It will be in a few months. While the company was investigating a previous incident in which 15,000 accounts were affected, he learned that an additional 576,000 accounts had been compromised.
In both incidents, Roku believes the attackers used a technique called credential stuffing. “The login credentials used in these attacks were likely obtained from another source, such as another online account, and the affected users may have used the same credentials,” the company said. says.
Roku added that in fewer than 400 cases, attackers used victims' Roku accounts to purchase streaming subscriptions or Roku devices using saved payment methods. However, the hacker was unable to access her full credit card number or other payment information.
The company has reset passwords for all affected accounts and notified affected users. The company has also enabled his two-factor authentication for over 80 million active accounts. The next time you log in, you will receive a confirmation email. You must click the link in the email to access your account. Meanwhile, Roku says it is refunding or canceling subscriptions or hardware purchases made by hackers.
While the impact of this latest breach doesn't seem to be too dire, it does serve as a reminder that you should have strong, unique passwords for all your accounts. This makes it much easier to obtain robust login credentials, as you only need to remember one primary password or log in using biometric data.
This article contains affiliate links. If you click on such links and make a purchase, we may earn a commission.