The streaming platform Plex έστειλε ένα email στους πελάτες της, ειδοποιώντας τους για μια παραβίαση ασφαλείας που μπορεί να έχει θέσει σε κίνδυνο τους λογαριασμού τους (ονόματα χρήστη, διευθύνσεις email και κωδικούς πρόσβασης).
Although there is no sign that the hackers were able to decrypt the passwords, Plex advises all users to change their passwords immediately.
Plex is one of the biggest streaming apps available and is used by around 20 millions people to view video, self-uploaded audio and photos, along with content provided by the service to paid subscribers.
The warning email states:
“Yesterday, we noticed suspicious activity in one of our databases. We immediately launched an investigation and it appears that a third party was able to access a limited subset of data including emails, usernames and encrypted passwords.”
The passwords of accounts are encrypted with a strong algorithm (bcrypt) and further protected with salting and peppering, according to the company, which makes it much harder for attackers to read the stolen passwords.
Plex stated that credit card data and generally all payment data is not stored on its servers.