Plex security notice looks _just_ like a phishing attack

I don’t know if it’s easy to contact whoever controls this - but the “Action Required” email we just received contains links that look like https://plex.tv/reset but the actual URL is more like https://links.plex.tv/s/c/long-string-of-identifiers - this lowers my confidence immediately in this being a real alert. It meets all the hallmarks of a phishing attack - an urgent request, a “click here now or you’ll be hacked!” link, where the link is to a long unidentified redirect that could easily be something untrustworthy.

(I know this one is legitimate - that’s why I came to the forums! But this is a poor practice from Plex, it is much better not to encourage users to just click on URLs in emails, especially when the link text doesn’t match the link target)

Wow, yeah, just noticed that after you pointed it out. That is one LONG ugly link. The base domain is still plex.tv, but it’s freaky.

I bet they are using email newsletter identifiers to figure out who is actually resetting their emails based on the email.

Thanks for reporting. I’ll let folks know. I think they must have forgotten to turn off the Google Analytics stuff that is appended to URLs in regular emails.

Oh awesome it was legit. I thought it was a phishing attempt but changed my passwords anyway

is this real?

Screenshot 2025-09-15 at 8.58.29 PM2310×1500 256 KB

No, that is fake. Send me your plex username and password via private message and I will get it taken care of for you. /s

ETA - please do not do this.

ah thanks a brazillion.

sending mothers maiden name too in case you need to reset my pw.

I know the above two comments are jokes, but just saying for those who don’t get jokes, it is real, don’t give out your password to people.