I got an email telling me that my account name was changed to a “Jduvernay1” and the email to “joshduvernay@clearmail.online” a few hours ago. Unlike a lot of previous “account hacked” posts found in search, no lifetime subscription was purchased by the hacker–I already have that. I was able to revert the changes and changed my password, but my question is how was my account hacked?
I’m certain I wasn’t phished. Did plex suffer a data breach that wasn’t announced? Was it bruteforced? In which case, should there be mechanisms in place to limit/prevent that? Is there a log somewhere of what the hacker did with my account? What IP(s) they used? Anything that can shed light on how this happened?
That doesn’t really explain anything. I’m certain the hacker doesn’t have access to my email account as once in a while, if my email provider sees my IP has changed, I have to re-verify my account via SMS. And putting BS addresses in that site comes back with positive results, so that site looks like it exists just to scare people and sell them on 1Password.
Plex usernames/password were hacked. The hacked file is out on the internet. At some point the hackers may check to see if those user names are still valid.
Thank you. I don’t recall that event, but even so, everyone was forced to change their passwords, right? That was almost 4 years ago, and I’ve used the forums since then, so I must have changed my password then. So, why did I get hacked now?
Taking another look at your link, I now realize I owe you an apology. I’ve seen that website linked before, and my comment about it stands. I didn’t bother to click on your link based on that though, and didn’t realize it linked to the specific plex event mentioned. That said, your tone was rather abrasive and unhelpful after that.
Right, but if I had used the forums prior to the data breach, then my account would be on the forum software and the hackers would have my password salt (to bruteforce) and I would have been made to change my password.
If not, I wouldn’t have been made to change my password, but the hackers wouldn’t have had my password salt.
Aren’t #1 and #3 the same? Admittedly, it wasn’t a very strong password, but that would still have required some bruteforcing on the plex.tv login system, and should have been detectable/preventable.
The 2015 data breach shouldn’t be relevant here.
Is there anyway to get someone from the plex.tv side to investigate?
@iaDF
You are really fighting us on this. We don’t know the reason how it was hacked. We were just throwing ideas out there. While this forum does have Plex employees working in an official capacity. I would believe that this may be beyond their scope of employment. If you still feel strongly about the how, then I would goto the contact page and select legal to possibly get answers. https://www.plex.tv/contact/
You could also ask Plex Inc and your email provider for the logs pertaining to the change. Though, you might need a subpoena to do so… But very possible if you have the drive and time to pursue. And sorry this happened to you. It does suck.
Best of luck to you.
