So I noticed to my dismay tonight that there was a new user named “hired88” on my Plex server, and when I looked at the devices tab there were a bunch of devices I don’t recognize, mostly Android (I don’t own any android devices). I haven’t shared my library with anyone, no friends, family or otherwise, ever. I downloaded a copy of the latest logs, changed my password and deleted the unknown user, closed the Plex port on my router and disabled Plex remote access in the server. What else do I need to do to secure my system?
My plex server is on a Windows 10 system. It is the latest version of Plex.
A quick google search turned up a “hired88” Twitter account in Poland.
How could this happen? I’m quite upset since I have home videos of my children and family photos on my plex server and who knows what creeps have been logging in and viewing. The whole thing is just very unsettling.
You can stay with Windows for your Plex server but make it a dedicated machine and a fresh installation. NO internet browsing on it. “All business”.
I don’t know windows very well.
As for Linux, I’ve been Unix/Linux for 35 years now. It’s not for the faint of heart to learn. For all the GUI which exists, over 75% is still done at the keyboard in a ‘cmd’ window. Unix/Linux was written before we had powerful machines and was designed to be fast and lean at the keyboard. That’s why it makes such a great server.
I’ve been using linux at the terminal for a decade and am quite comfortable with it. I only used windows for this install because I also use the machine to host virtual instruments that are windows only.
