Plex

2022 - 8 - 26

Post cover
Image courtesy of "ComputerWeekly.com"

Millions of Plex users may be at risk in password breach (ComputerWeekly.com)

Up to half of Plex's 30 million users may have had their personal data stolen by an unknown threat actor.

Fisher added: “Ultimately, this intrusion reinforces the seemingly age-old adage to avoid the reuse of passwords. “Out of an abundance of caution we are requiring all Plex accounts to have their password reset,” the firm said in an email seen by Compute Weekly. It said it believed the actual impact to have been limited, and that all accessed passwords were “ “We sincerely apologise to you for any inconvenience this situation may cause. More recently, it has branched out into offering ad-supported video-on-demand and free-to-view live television channels. The organisation has made no further comment on the incident.

Post cover
Image courtesy of "Cyber Security Hub"

IOTW: Plex urges customers to change passwords following data ... (Cyber Security Hub)

The streaming service suffered a data breach by a third-party that allowed them unauthorized access to user's login information.

Streaming services like Twitch and Plex are targets for data breaches as they hold a large amount of customer data. The company said that it “does appear” that a third party was able to “access a limited subset of data that includes emails, usernames and encrypted passwords”. Another said that the site’s crashing was “interesting timing given the data breach and hack yesterday and off the back of an urgent password reset”. Seems interesting timing given the data breach and hack just yesterday and off the back of an urgent password reset. Video game streaming service Twitch reported a data breach in October 2021 which exposed Twitch creator payout as well as data from Twitch’s source code repository. While Plex said that it had identified how the third party gained access to the database, it did not share the method with customers.

Post cover
Image courtesy of "The Record by Recorded Future"

Streaming media platform Plex warns users to reset passwords after ... (The Record by Recorded Future)

The Record by Recorded Future gives exclusive, behind-the-scenes access to leaders, policymakers, researchers, and the shadows of the cyber underground.

According to an email sent out to Plex customers, hackers had accessed “a limited subset of data.” The company assured recipients that credit card and payment data is not stored on its servers. Plex claimed that “the actual impact of this incident is limited,” but didn’t provide further details. User passwords on Plex were

Post cover
Image courtesy of "TweakTown"

If you're using Plex, you might want to change your password (TweakTown)

Plex announces data breach, with the company emailing users that they should change their passwords after a data breach exposing users' personal data.

Even though all account passwords that could have been accessed were hashed and secured in accordance with best practices, out of an abundance of caution we are requiring all Plex accounts to have their password reset. Rest assured that credit card and other payment data are not stored on our servers at all and were not vulnerable in this incident". This will additionally sign out all of your devices (including any Plex Media Server you own) and require you to sign back in with your new password. Plex says that users should rest assured that their credit card and other payment details aren't stored on their servers, and were "not vulnerable in this incident". We immediately began an investigation and it does appear that a third-party was able to access a limited subset of data that includes emails, usernames, and encrypted passwords. The company started an investigation into the incident, where they discovered that someone had access to a portion of their data.

Post cover
Image courtesy of "TidBITS"

Plex User Passwords Compromised in Data Breach - TidBITS (TidBITS)

Streaming service Plex is warning users to change their passwords after user data was compromised. Here's how to do so.

If only we had Even though Plex says the passwords were hashed (cryptographically scrambled), the company is still warning users to change their passwords. - Click the hamburger icon in the upper-right corner.

Plex confirms cyberattack, impose password reset for users - IT ... (IT World Canada)

Plex, a major provider of media streaming services, has confirmed a cyberattack in which attackers stole password data and emails from at least half of its ...

Step-by-step instructions were also provided, and the company advised customers to sign out of all connected devices after changing their passwords and then log back in. This means that the stolen passwords were cryptographically arranged in such a way that would require attackers to expend additional resources to crack the hashes and restore them to their plaintext state. Plex said the passwords stolen by the attackers were “hashed and secured in accordance with best practices.”

Post cover
Image courtesy of "Ghacks Technology News"

Plex warns users to change their passwords after a data breach ... (Ghacks Technology News)

The streaming service has already patched the security vulnerability that was exploited by the hacker, and is reviewing the security of its systems as a ...

Plex has warned users to change their account's password. The company has sent out emails on Wednesday to alert users about the data breach. Most companies wait a month or even a few months before notifying users about a data breach. You can take a look at the company's [privacy policy](https://www.plex.tv/about/privacy-legal/) for more details. The streaming service has already patched the security vulnerability that was exploited by the hacker, and is reviewing the security of its systems as a precaution. The streaming media platform, Plex, has revealed that it has been impacted by a data breach.

Post cover
Image courtesy of "TechRadar"

Plex confirms data hack, user details and passwords stolen (TechRadar)

Passwords and personal information taken, with Plex advising users to update their credentials.

[best firewalls](https://www.techradar.com/best/firewall)(opens in new tab) today [The Register](https://www.theregister.com/2022/08/24/data_breach_plex_hack) (opens in new tab) [These are the best password managers around](https://www.techradar.com/best/password-manager) (opens in new tab) Regardless, people rushed to change their login credentials, but many couldn’t do it, as Plex’s servers collapsed under the increased traffic. Plex “already addressed the method that this third-party employed to gain access to the system,” it said. [stolen](https://www.techradar.com/best/best-identity-theft-protection) (opens in new tab), the company has confirmed.

Post cover
Image courtesy of "Komando"

Plex suffers massive data breach. Here's how to protect your account (Komando)

Hackers managed to breach a database of the streaming platform Plex, making off with an undisclosed amount of usernames and passwords.

- Watch for phishing emails claiming to have details on the Plex data breach. From there, scroll down to Security and click Edit in the Password box. In addition, Plex hashed all the passwords in a secure database, so it will be challenging for hackers to disseminate the information. In addition to never using the same password for different websites, you should change your credentials at least once every six months. In addition to letting you stream a selection of free films, the service is an excellent media player platform for streaming your content from wherever you are. As for what happens now, the company is investigating the breach to understand better how this happened.

Post cover
Image courtesy of "Niche Gamer"

Streaming service giant Plex gets hacked, user's emails and ... (Niche Gamer)

Streaming giant Plex has contacted users of their service to reset their passwords after they confirmed a hacking breach.

Please leave feedback and let us know if there’s tech or a story you want us to cover! For those unaware of what Plex is, they are an American streaming media service that also works as a client-server media playing platform. According to mass-sent email, this breach only affects a “limited subset” of users.

Explore the last week