Plex, a popular video platform, warned many users today via e-mail that there had been a security breach in which, in addition to the username, the user's password and e-mail address could have been stolen - fortunately, the passwords encrypted.
Plex detected anomalous database access activities. According to their own admissions, early investigations revealed that unauthorized individuals accessed parts of the data containing the above information. Because credit card or other payment information is not saved on the Plex servers, it cannot have been obtained by other parties through the attack. In the interim, the hackers' entry point is believed to have been closed, preventing others from using it. However, Plex does not disclose how the attackers acquired access. However, they wish to test all systems and strengthen their defenses against attacks.
If you're a Plex user, please do reset your password.
Even if Plex currently considers the danger and impacts as low, and it is not yet known that the credentials were revealed, users should change their passwords at Plex immediately - Plex wishes to enforce this from all users for security reasons. When changing their password, users should log off all logged-in devices, which means you'll have to log on to them all again, but this is the only way to ensure essential security. Plex's instruction leads you through the steps required to change your password. Users should implement two-factor authentication for their user accounts if they have not previously done so.
Plex, with about 20 million users, is one of the most popular media server programs, allowing users to stream self-uploaded videos, images, and sound recordings to various end devices.