""An unauthorized third party accessed a limited subset of customer data from one of our databases. While we quickly contained the incident, information that was accessed included device type, emails, user names and authentication data," it said. "We've already addressed the method that this third party used to gain access to the system, and we're undergoing additional reviews to ensure that the security of all of our systems is further strengthened to prevent future attacks.""
"Plex also said that any account passwords accessed were securely-hashed, and couldn't be read by a third party. It added that credit card data wasn't stored on its servers and was therefore secure. Who is responsible for the Plex data breach? No group has claimed responsibility for the attack thus far. While it's not known how many people may have been affected, the company has around 25 million users around the world."
An unauthorized third party accessed a limited subset of customer data from one Plex database. The incident was quickly contained. Accessed information included device type, email addresses, user names, and authentication data. Plex addressed the access method and is undergoing additional reviews to strengthen system security against future attacks. Account passwords accessed were securely-hashed and could not be read by third parties. Credit card data is not stored on Plex servers and remained secure. Users are instructed to reset passwords, sign out connected devices, and enable two-factor authentication. No group has claimed responsibility; Plex serves around 25 million users.
Read at IT Pro
Unable to calculate read time
Collection
[
|
...
]