Streaming giant Plex is urging its customers to change their passwords after it disclosed a data breach of one of its user databases.
The company said
in a post on Monday that it was aware of a security incident involving the theft of Plex customer account information, including user names, email addresses, scrambled passwords, and unspecified authentication data.
Plex said while the passwords were scrambled in a way that made them unreadable to humans, it’s unclear if the passwords can be deciphered or if the stolen authentication data could be used to gain access to customer accounts.
The company said customers should change their passwords by visiting Plex’s
password reset form. Plex is also asking users to sign out of connected devices.
While it is common for organizations who experience data breaches of user information — even if that data is scrambled — to force-reset passwords to prevent malicious access to customer accounts, it’s unclear why Plex chose not to take this approach.
techcrunch.com
