Recently, Roku has faced serious security issues, including two separate cyberattacks within a short period of time.
The streaming giant confirmed that more than half a million Roku user accounts were compromised through a credential stuffing attack in a second incident.
![man with remote control](https://a57.foxnews.com/static.foxnews.com/foxnews.com/content/uploads/2024/04/1200/675/1-Over-half-a-million-Roku-accounts-compromised-in-second-cyber-security-breach.jpg?ve=1&tl=1)
Man using Roku remote control (year)
What Happened: Analysis of the Event
that much The first of these incidents It was detected earlier this year when Roku's security systems noticed unusual activity in about 15,000 user accounts. Investigation revealed that these breaches were caused by credential stuffing, where attackers accessed Roku accounts using login credentials stolen from other services. Fortunately, Roku confirmed that the system was not compromised and that the credentials used were obtained from an external source.
Click to receive Kurt's free CYBERGUY newsletter with security alerts, quick video tips, tech reviews, and easy ways to make you smarter.
The situation escalated rapidly. Second, large-scale incident Includes approximately 576,000 accounts. In less than 400 of these cases, malicious actors logged in and made unauthorized purchases of streaming service subscriptions and Roku hardware products. However, sensitive user information, including full credit card numbers or other full payment information, remains secure.
Roku has over 80 million active accounts, and the accounts affected make up a small portion of its user base. “We sincerely regret these incidents occurred and any disruption they may cause. The security of your account is our top priority and we are committed to protecting your Roku account,” the company wrote on its website. A statement was posted.
![Roku website](https://a57.foxnews.com/static.foxnews.com/foxnews.com/content/uploads/2024/04/1200/675/2-Over-half-a-million-Roku-accounts-compromised-in-second-cyber-security-breach.jpg?ve=1&tl=1)
See more: How to find out who's spying on you
Proactive Action from Roku
In response to this security breach, Roku took four proactive steps:
One. Reset your password: Passwords for all affected accounts have been reset.
2. Direct notification: Roku has notified affected customers directly.
three. Refunds and Cancellations: Any amounts charged during the period of the violation will be refunded or canceled.
4. 2-Step Verification: Roku is here. two-factor authentication (2FA) provides an additional layer of security to all accounts.
Nationwide Alert: SMS Phishing Targets Toll Road Customers.
![Roku website photo](https://a57.foxnews.com/static.foxnews.com/foxnews.com/content/uploads/2024/04/1200/675/3-Over-half-a-million-Roku-accounts-compromised-in-second-cyber-security-breach.jpg?ve=1&tl=1)
MORE: How to Protect Yourself from Streaming Hacks
How to help protect your account
Roku emphasizes the importance of user engagement when it comes to account security. Here are some recommendations:
- Strong and unique password: Users must create a unique, strong password for their Roku account. you are password manager We create and store your password securely.
- Awakening: Roku advises users to be alert to suspicious communications and to contact customer support if they are unsure about the authenticity of a request.
- Stay informed: You should regularly check your email for communications from Roku and log into your account to review your rates.
What should I do if I've been hacked?
If this has already happened and you have been hacked, you should take action immediately to minimize the damage and protect your device. Here are some steps you can follow:
Change your Roku password
If hackers record your passwords, they can access your online accounts and steal your data or money. On other devices (such as laptops or desktops), you should change passwords for all important accounts, including email, banking, and social media. If you want to do this on another device to prevent hackers from recording, you're setting up a new password on the hacked device. You should also use strong, unique passwords that are difficult to guess or crack. You can also use: password manager We create and store your password securely.
Enable 2-Step Verification: two-factor authentication Adds an extra layer of security to your Roku account, preventing credential stuffing attacks. It works by prompting you to enter a time-sensitive code along with your username and password. This prevents hackers from breaking into your account with just a stolen password.
Get FOX Business on the go by clicking here
Monitor your accounts and transactions
You should regularly check your online accounts and transactions for suspicious or unauthorized activity. If you notice anything unusual, report it immediately to your service provider or relevant authorities. You should also review your credit report and score to look for signs of: identity theft Or fraud.
Use identity theft protection
Identity theft prevention companies can monitor personal information such as your home name, social security number, phone number, and email address and send you an alert if that information is being used to open an account. It can also help you freeze bank and credit card accounts to prevent further unauthorized use by criminals.
One of the best things about using an identity theft protection company is that they may include identity theft insurance of up to 100% $1 million to cover losses and legal costs. and Fraud resolution team with US-based case managers It will help you recover your losses. Get tips and best options on how to protect yourself from identity theft..
Contact your bank and credit card company.
If a hacker obtains your banking or credit card information, they may use that information to make purchases or withdrawals without your consent. You should notify your bank and credit card company of the situation. We can help you freeze or cancel your card, dispute fraudulent charges, or get a new card.
Notify your contacts
If a hacker gains access to your email or social media account, they can use it to send spam or phishing message to your contacts. They may also impersonate you and ask for money or personal information. You should notify and warn your contacts not to open or respond to messages from you that seem suspicious or strange.
![computer hacker](https://a57.foxnews.com/static.foxnews.com/foxnews.com/content/uploads/2024/04/1200/675/4-Over-half-a-million-Roku-accounts-compromised-in-second-cyber-security-breach.jpg?ve=1&tl=1)
hacker on laptop (Kurt “Cyberguy” Knutsson)
Read more: Hackers use pirated software to hijack MAC, Android and WINDOWS devices.
Kurt’s Key Takeaways
Roku's recent experience highlights the ongoing challenge for digital service providers to protect user data from increasingly sophisticated cyber threats. Roku aims to protect against future incidents by implementing stronger security measures and increasing user awareness. The adoption of two-factor authentication is an important step forward in ensuring that the security of user accounts does not depend solely on passwords.
CLICK HERE TO GET THE FOX NEWS APP
How has the recent surge in cyberattacks affected trust in digital platforms, and what steps should businesses take to restore trust? Please let us know by sending a letter to: Cyberguy.com/Contact Us.
For more tech tips and security alerts, subscribe to the free CyberGuy Report newsletter by going to: Cyberguy.com/Newsletter.
Ask Kurt a question or let him know what story you'd like us to cover..
Answers to CyberGuy's most frequently asked questions:
Copyright 2024 CyberGuy.com. All rights reserved.