February 3, 2016
On November 14, 2015, VTech discovered a hacker had broken into their databases, servers, and websites. The hacker used SQL injection to gain complete access to the databases that held all of the data used by the Kid Connect application that VTech uses.
A friend of mine wrote up an awesome case study about the breach and you can read it here StephenManz_KidConnectHack.
My two cents on the VTech breach (Not a TL;DR of the case study, just what I took away)