What the Tech: Some Roku accounts hacked, with personal information sold | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | #hacking | #aihp

Posted: Mar 14, 2024 4:31 PM CDT

by
WAKA Action 8 News

By JAMIE TUCKER Consumer Technology Reporter

In the world of cybersecurity, data breaches are unfortunately common. However, a recent breach involving Roku has caught our attention for good reason, even if you don’t own one.

Here’s what happened: over 15,000 usernames and password combinations were leaked onto the Dark Web, where cybercriminals are selling them for a measly 50 cents each.

Cybersecurity experts at “Bleeping Computer” found the listing which included instructions for the cybercriminals purchasing the account credentials.

Basically, with these stolen credentials, bad actors can get into your accounts, mess with your credit card info, and change your email and password. And you might not even realize it until you see strange charges on your credit card bill.

This breach is part of a larger problem called “credential stuffing.” It’s when hackers try the same login info across different services. And if you’re using the same password for everything—which many people do—then you’re at risk.

But there’s some good news. You can check if your info has been leaked in a data breach by going to a website called ‘haveibeenpwned.com’. Just type in your email address, and it’ll show you where your info might have been exposed. You should also check your passwords there.

You might be surprised to find out that a password you thought was safe has actually been leaked hundreds of times.

So, what can you do if your info has been compromised? Change your password everywhere you’ve used it.

If you’re a Roku user, you need to be extra careful. Log into your Roku account, check where you’re logged in, and if you see any locations or devices you don’t recognize, log out everywhere and change your password right away.