Plex account hacked

Hi there,

I came back from holiday and realised my account has been hacked. Someone changed the email to my account which has a plex pass. I did not even know that changing emails was an option.

Can anyone advise on what to do in this situation to recovery my account and plexpass?

Thanks

https://www.plex.tv/contact/?option=plex-pass-billing

My account just got hacked this morning as well. I submitted a message to Plex Legal support (why doesn’t the Tech Support option allow you to send a message?). Anyways, after my account got hacked and I regained access, I noticed an unauthorized user was granted access to my library. The username was something like “panat90” and email address associated with it was “nwets989@gmail.com”. I am making others aware that this individual/username on Plex is associated with illegal and malicious activities so beware.

EMAIL NOTIFICATIONS FROM MALICIOUS ACTIVITY/HACKER:

<Sat 06-May-23 13:01>
This is an automated message from Plex to let you know
that we’ve completed the requested email address change.
The account email has been changed from
m****@****ses.com to nwets989@gmail.com.

<Sat 06-May-23 12:57>
A new device was used to sign in to your Plex account:

Account: Fitz*****
Device: Plex Website
Location: Bhopal, Madhya Pradesh, India (estimated)
IP address: 49.36.26.202

<Sat 06-May-23 12:51>
A new device was used to sign in to your Plex account:

Account: Fitz*****
Device: Plex Website
Location: Tappahannock, Virginia, United States (estimated)
IP address: 20.232.246.14

My account also got hacked and the hacker changed the PW and requested that my account email be changed to his. Fortunately Plex sent the email to my account with a reversal code. This procedure of allowing a change without a confirmation code sent to the current email is a major security hole. Plex should not allow an email change request to be made unverified. I would like to suggest that this email-verification-first procedure be the standard procedure, rather than allowing it unverified and giving the old email a week to recover as the Plex email sent afterward may easily slip by on time or not seen.

2FA is your friend to all those who are getting their accounts hacked.

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.