- Plex suffered a data violation that exposes emails, usernames and passwords of Hashed
- Users are urged to change passwords and enable two factors authentication
- A separate vulnerability in average server was paveled in August
The popular media server and the transmission platform, Plex, warned their users about the loss of their confidential data in a cyber attack, and urged them to update their passwords as a result.
In a publication in the forum published on September 8, Plex said that he recently experienced a security incident with “limited impact”, when an unauthorized third party agreed to a subset of customer data.
“While we quickly contain the incident, the information that was accessed included emails, user names, hash passwords safely and authentication data,” says the publication. The credit card or other payment data was not accessed since it was not even stored on the company’s servers.
HASH passwords are illegible
The passwords were Hash “according to the best practices,” Plex said, explaining that computer pirates cannot read them. Even so, to be sure, the company recommends users to close from all sessions and change all passwords. It also emphasizes that it will never be communicated by email to request a password or a credit card number, insinuating that criminals could start sending phishing attacks to the email accounts they obtained in the attack.
“To obtain more account protection, we also recommend enabling the authentication of two factors in your Plex account if you have not yet done.”
As a media server and transmission platform, Plex allows users to collect, organize and transmit personal media such as films, television programs, music, photos and more on almost any device. It is quite popular, with some sources that claim that it has more than 25 million active users.
In mid -August this year, Plex said he poured a mysterious vulnerability that affected his Plex Media Server product, and has told users not to delay the application of the solution. The company received a report through its rewards program on a possible security problem that affected the versions of Plex Media Server 1.41.7.xa 1.42.0.Xy shortly after, presented a patch.
Through Bleepingcomputer
