@lgladdy said:
Folks on twitter saying unique emails used for Plex got this too, so it looks like it might be something more than just them trying previously leaked email addresses to see who has a Plex account, and maybe this is a leak directly from Plex.
I can confirm this; my Plex account email address is unique to Plex and I received the same message a few minutes ago.
Your forum account has existed since 2014
@limaechooscar said: @orig agree and concur with you, I use a unique address for Plex only and I am on the forum for the last two months only…
Your forum account as existed since 2013
Even if you have not posted on forum signing in will create account
Ah, well that’s a relief re: @limaechooscar 's account. I was aware of my own being around since 2014.
(Couldn’t find a way to edit my previous message - new to to this forum platform).
Got it too - also got a sign-in attempt warning from Google last night on the email address used for Plex. Not sure if the forum breach resulted in passwords being pulled as well? might be worth resetting your passwords if you didn’t after the breach a few years ago
@lachancp said:
Got it too - also got a sign-in attempt warning from Google last night on the email address used for Plex. Not sure if the forum breach resulted in passwords being pulled as well? might be worth resetting your passwords if you didn’t after the breach a few years ago
We did force all users who had forum accounts when the breach happened to reset their passwords.
More worried about folks that may have used the same password for their email and didn’t change that when they changed the Plex password. Assume folks you reuse passwords would have changed it - but just in case
I called the number (figured that was safe enough) - some guy answers (just says hello) and says they are launching a vpn service. I commented about their use of the Plex name - response was that there are Plex employees on their team. Guy had an american or canadian accent. Odd - not what I expected. With Plex being a virtual company, maybe there’s a rag-tag bunch of folks out there using the name inappropriately!
@lachancp said:
I called the number (figured that was safe enough) - some guy answers (just says hello) and says they are launching a vpn service. I commented about their use of the Plex name - response was that there are Plex employees on their team. Guy had an american or canadian accent. Odd - not what I expected. With Plex being a virtual company, maybe there’s a rag-tag bunch of folks out there using the name inappropriately!
I decided to have some fun (and investigate) and called as well. I got the same story. Asked them about me, giving them my first name, and sure enough they confirmed I’m a Plex dev who’s also on their team B)
and low again … off topic but who cares , your whole system and forum is a mess anyway. i have the plex user snickers and had the forum name snikay, now my forum name is snickers in lowercases, but my profile links to Snickers with a capital S … perfect guys… perfect… matches perfectly with your mail-chimp leak
oh, and by the way, all of my 4 plex accounts got this mail … so i guess you’ll get a few happy customers these days. With me, you have one. Because this fucked up email means my MAIN email is leaked to the internet because of you dickheads. GREAT JOB
by the way i guess they are right when there is somebody telling you guys they have a plex employee in their team. Think about it … it takes some time to copy a few million email adresses. i’m really pissed. once a year plex fucks up completely
The breach happened 2 years ago ( July 2015) on completely different forum software. We switched to the current software because it does not maintain your credentials.
All accounts were emailed affected were emailed at the time and as mentioned above all passwords were reset at that time.
Check the headers of the message for the header X-Report-Abuse. Use the URL in that header, and paste the full headers (or as much as you can if you want to redact your internal mail infra), and do the submit button dance. Get these guys banned at least from using a reputable mail send company.
Given that they gave a real phone number and address, and used stolen data for their mailing list, it seems like reporting to the Spam Reporting Centre might actually lead to something. I’m filling one out now.
Soooooo . . . I texted the number on their site like an idiot. I saw the email towards the end of my lunch break, looked up the site and it seemed legit. I was in a hurry and I fired off a text to their support to ask about port forwarding. But as the day went on it just didn’t sit well with me. I looked into it further and let’s just say I feel very foolish.
