I received a “New sign-in to your Plex account” email last night. The IP was one of the IPs for TorGuard VPN out of Chicago. This was not me as I was in bed at the time and no one else knows the password for my account. It appears that the encryption on your passwords may have been cracked already.
I changed my password and also removed the device from the “Authorized Devices” list.
Did the sign-in happen after you changed your Plex password or before?
Before my password was changed. I missed the email about the breach until I saw the new sign-on email and did some digging.
Well, something like that was to be expected after the breach.
This is exactly why affected users were contacted and prompted to change their passwords.
Yes, I understand that. What is alarming is that it took only about 24 hours for someone to break the security that you used for storing passwords.
Was your old Plex password particularly weak
or was it used by you to login to other sites as well?
It was a seven character alphanumeric mix that was non-sequential, non-repeating. Not strong, but not particularly weak. The password was used some other random, non-important places which have all been changed. Places that did not have a security breach.
This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.
