Streaming service provider Roku said it identified a second cyberattack that impacted about 576,000 additional accounts while investigating a breach that affected 15,000 user accounts earlier this year. The company, which had more than 80 million active accounts, said the hackers did not gain access to any sensitive information such as full credit card numbers or other payment details.
However, the company said it identified less than 400 cases where the information was used to make unauthorised purchases of streaming service subscriptions and hardware products using the payment method stored in the accounts.
Roku pinned the unauthorised access to “credential stuffing”, where users may have used the same credentials across different platforms.
As Roku moves forward, it plans to enhance security measures and strengthen its platform against future cyber threats. Additionally, bolstering resilience is a priority for the company. The company’s commitment to cybersecurity and protecting user data remains paramount as it navigates the aftermath of the cyberattack. By investing in robust security protocols and continuous monitoring systems, Roku aims to fortify its defenses and mitigate the risk of future breaches. Additionally, fostering collaboration with cybersecurity experts and regulatory authorities will enable Roku to stay ahead of evolving threats and uphold its commitment to user privacy and data protection in an increasingly digitized world.
read more
image source
