Justin Sullivan/Getty Images
iHeart Podcast Awards 2024
Streaming platform Roku has suffered a data breach, with over 15,000 accounts compromised.
The company, which has more than 80 million active accounts, disclosed the violations Friday in documents filed with the attorneys general of Maine and California. According to the filing, 15,363 accounts were found to have been compromised between December 28, 2023 and February 21, 2024.
The filing indicates that hackers did not break into Roku’s systems, but that the accounts were compromised by hackers who obtained login data from other sources.
“Roku’s security team recently discovered that a limited number of Roku accounts were compromised by unauthorized attackers using login credentials obtained from third-party sources (e.g., through data breaches of third-party services not affiliated with Roku). We have detected suspicious activity indicating that your site has been accessed,” a company spokesperson said. hollywood reporter. “In response, we are taking immediate steps to protect these accounts and are notifying affected customers. Roku is committed to maintaining customer privacy and security, and in this We take the incident very seriously.”
In a letter mailed to affected accounts, the company said that in “a limited number of cases” the hackers attempted to use the accounts to purchase streaming subscriptions.
“An unauthorized attacker could separately obtain login information (a sign-in email address and password combination) from a third-party source unrelated to Roku and use it to access specific individual Roku accounts. “I did,” the letter continues. “However, access to an affected Roku account could allow an unauthorized attacker to access social security numbers, full payment account numbers, dates of birth, or other similarly sensitive personal information that requires notification. I couldn’t access it.”
Bleeping Computer, which first reported the breach, reported that the attackers were selling stolen account credentials for as low as $0.50 each.
