Roku says 576,000 consumer accounts hacked after second safety incident

Streaming large Roku has confirmed a second safety incident in as many months, with hackers this time in a position to compromise greater than half one million Roku consumer accounts.

In a press release Friday, the corporate mentioned about 576,000 consumer accounts had been accessed utilizing a method often called credential stuffing, the place malicious hackers use usernames and passwords stolen from different information breaches and reuse the logins on different websites.

Roku mentioned in fewer than 400 account breaches, the malicious hackers made fraudulent purchases of Roku {hardware} and streaming subscriptions utilizing the cost information saved in these customers’ accounts. Roku mentioned it refunded clients affected by the account intrusions.

The firm, which has 80 million clients, mentioned the malicious hackers “weren’t in a position to entry delicate consumer data or full bank card data.”

Roku mentioned it found the second incident whereas it was notifying some 15,000 Roku customers that their accounts had been compromised in an earlier credential stuffing assault.

Following the safety incidents, Roku mentioned it rolled out two-factor authentication to customers. Two-factor authentication prevents credential stuffing assaults by including an extra layer of safety to on-line accounts. By prompting a consumer to enter a time-sensitive code together with their username and password, malicious hackers can not break right into a consumer’s account with only a stolen password.

Source hyperlink

Leave a Reply

Your email address will not be published. Required fields are marked *