I just received an email for a VPN service that clearly targeted me as a Plex user - I assume that this is not approved by you, and wanted to bring it to your attention. I’m sure other users have received a similar message. Has there been a data breach?
Original pasted below:
Plex reveals new VPN business www.MySafeVPN.com
Plex has been used as a media platform for a long time now with users mainly accessing content they’ve got saved on a local media server. However, with the recent change in US privacy bills, UK privacy laws and more, it is now more difficult to fill these media servers with the content that users want to enjoy.
Plex media server has now released a new service called www.MySafeVPN.com . This service will help users stay anonymous on the internet so they can download what they want, view what they want, browse where they want, without anyone looking over their shoulder. Internet access and media access can both now be completely anonymous using the new Plex VPN service which can be purchased at MySafeVPN.com .
Prices are currently on a discounted rate for today in order to allow users to get a chance to try the product. If you are interested, go to www.MySafeVPN.com and purchase your subscription today for just $9.99 . The team will help get you aligned with the service and you will be setup within minutes.
Do you have questions about our new service? Well because we wanted to make a big impact on the market, we stepped up our customer service from DAY 1. You can reach us via phone call OR SMS at +1-877-745-1560 . Get in touch with us today and we’ll answer all of your questions!
EDIT: If you aren’t already signed up for notifications from haveibeenpwned.com, I would highly recommend searching your email addresses there and signing up now
Folks on twitter saying unique emails used for Plex got this too, so it looks like it might be something more than just them trying previously leaked email addresses to see who has a Plex account, and maybe this is a leak directly from Plex.
Hey everyone. This is not us! We were also taken by surprise as many Plex employees received the same email, myself included. We’re seeing very similar emails going out from the same outfit to former Boxee users as well. We are investigating and reporting them to their service and mail providers, but believe this could be related to the 2015 forums breach.
@lgladdy said:
Folks on twitter saying unique emails used for Plex got this too, so it looks like it might be something more than just them trying previously leaked email addresses to see who has a Plex account, and maybe this is a leak directly from Plex.
I can confirm this; my Plex account email address is unique to Plex and I received the same message a few minutes ago.
If you are interested, mysafevpn.com is registered through name.com, which does have an abuse report. I have reported them for sending unsolicited emails including details about the email and a link to this thread
@lgladdy said:
Folks on twitter saying unique emails used for Plex got this too, so it looks like it might be something more than just them trying previously leaked email addresses to see who has a Plex account, and maybe this is a leak directly from Plex.
I can confirm this; my Plex account email address is unique to Plex and I received the same message a few minutes ago.
Your forum account has existed since 2014
@limaechooscar said: @orig agree and concur with you, I use a unique address for Plex only and I am on the forum for the last two months only…
Your forum account as existed since 2013
Even if you have not posted on forum signing in will create account
When this spam appeared in my mailbox I was briefly concerned that Plex was backtracking on the policy that they do not aid or condone piracy. The email specifically says that the service is for hiding download activity along with other things.
But shortly I looked closer and saw that there was nothing except the name “Plex” that pointed to this being from or condoned by Plex and it would be both a HUGE departure from Plex’s stated policies and a big risk in that it would expose them to accusations of facilitating piracy.
I do not think Plex would under any circumstances take that route as the risk/reward ratio would be extremely unfavorable.
That would be a stupid business move and that kind of stupidity is not part of Plex’s business persona.
In this case I strongly believe the Plex employees and others that have said that this is NOT Plex and that Plex has nothing to do with it.
