For HomeFor BusinessFor Partners
Digital Privacy Data Breach
1 min read

Half a Million Roku Accounts Compromised in Credential Stuffing Attack

Silviu STAHIE

April 15, 2024

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Half a Million Roku Accounts Compromised in Credential Stuffing Attack

Following an investigation into unusual activity regarding login attempts using personal information from third-party data breaches, Roku said it has found over half a million additional accounts impacted by this problem.

In March 2023, Roku said hackers managed to access the accounts of 15,363 US residents following credential-stuffing activity that lasted a few months.

Basically, attackers used credentials from other data breaches and tried them on Roku. Since around 30 to 40 percent of users tend to use the same password on multiple accounts, compromising Roku accounts wasn’t difficult.

When the company investigated the initial problem, it found some 576,000 additional accounts were caught in this attack.

“There is no indication that Roku was the source of the account credentials used in these attacks or that Roku’s systems were compromised in either incident,” said the company. “Rather, it is likely that login credentials used in these attacks were taken from another source, like another online account, where the affected users may have used the same credentials.”

The problem is not necessarily that other people accessed the account, although this is a serious issue. It turns out that criminals, in around 400 cases, logged in and made unauthorized purchases of streaming service subscriptions and Roku hardware using the payment method stored in these accounts. The good news is they had no access to credential card information.

Of course, Roku has reset all passwords for the affected accounts and notified the customers. More importantly, the company has enabled two-factor authentication (2FA) for all Roku accounts, even for those the recent incidents didn’t affect.

Need help navigating data breaches?

Use Bitdefender Digital Identity Protection to considerably improve your digital privacy and take action immediately after a breach. Key features include:

  • Comprehensive dashboard where you can get an extensive overview of all your personal data, even traces from services you no longer use
  • 24/7 monitoring of your data on both the public and Dark Web, immediately notifying you of incidents that may involve your information
  • Simple, 1-click action items to instantly shut down any weak spots in your digital footprint

tags

Digital Privacy Data Breach

Author

Silviu STAHIE

Silviu STAHIE

Silviu is a seasoned writer who followed the technology world for almost two decades, covering topics ranging from software to hardware and everything in between.

View all posts

Right now Top posts

Torrents with Pirated TV Shows Used to Push Lumma Stealer Malware
Threats The Safe Nomad

Torrents with Pirated TV Shows Used to Push Lumma Stealer Malware

November 14, 2024

4 min read
How Scammers Stole $20 Million by Hacking Emails of Real Estate Agents – Here’s Why Small Firms Must Take Cybersecurity Seriously
Industry News Very Small Business Scam

How Scammers Stole $20 Million by Hacking Emails of Real Estate Agents – Here’s Why Small Firms Must Take Cybersecurity Seriously

November 11, 2024

3 min read
Is Your Digital Footprint Placing You in Scammers’ Crosshairs?
Scam

Is Your Digital Footprint Placing You in Scammers’ Crosshairs?

October 17, 2024

4 min read
What Key Cyberthreats Do Small Businesses Face?
Tips and Tricks How to Very Small Business

What Key Cyberthreats Do Small Businesses Face?

September 06, 2024

4 min read

FOLLOW US ON SOCIAL MEDIA

You might also like

Hot Topic Data Breach Allegedly Exposes Over 56 Million Customer Accounts
Digital Privacy Data Breach

Hot Topic Data Breach Allegedly Exposes Over 56 Million Customer Accounts
Alina BÎZGĂ

November 13, 2024

2 min read
What Is Doxing on Social Media? Protection, Prevention, and Reporting Guide
Digital Privacy Content Creators Tips and Tricks

What Is Doxing on Social Media? Protection, Prevention, and Reporting Guide
Bitdefender

November 06, 2024

11 min read
Why Netizens Should Care About Data Leaks
Digital Privacy

Why Netizens Should Care About Data Leaks
Alina BÎZGĂ

October 30, 2024

4 min read

Bookmarks

loader