Roku has been hit by cyber hackers who gained access to 15,363 accounts and took usernames and passwords that customers also used on other websites, the TV streaming platform recently disclosed.
The breach, reported on March 8, occurred between December 28, 2023 and February 21, according to a disclosure notice with the Maine Attorney General's Office.
Roku said it has already reset the account passwords of those affected by the cyber attack, but encourages users to also take the following steps:
From just $107.88 $24.99 for Kiplinger Personal Finance
Become a smarter, better informed investor. Subscribe from just $107.88 $24.99, plus get up to 4 Special Issues
Sign up for Kiplinger’s Free Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
What to do
- Review the subscriptions and the devices linked to your account, which you can view on your account dashboard.
- Always use a strong, unique password for each of your online accounts. For more information, visit Roku's how to create a strong and secure password for your account site.
- Regularly review statements from your account and obtain your credit report from one or more of the national credit reporting companies. You can obtain a free copy of your credit report online at www.annualcreditreport.com or by calling toll-free 1-877-322-8228.
Hackers tried to buy subscriptions
The breach is the latest in a long line of cyber attacks on businesses and follows a massive breach at 23andMe last December. The breach at the genetic testing company also involved hacks of accounts in which customers used the same passwords and usernames from other websites.
Experts warn customers to change their passwords often and don't use the same ones across accounts.
In a March 8 letter sent to users, Roku said that it observed suspicious activity "indicating that certain individual Roku accounts may have been accessed by unauthorized actors.”
After an investigation, Roku found that unauthorized actors likely obtained the usernames and passwords of subscribers from third-party sources, such as data breaches of other services that those subscribers use, and then used those same logins and passwords to gain access to Roku accounts.
“After gaining access, they then changed the Roku login information for the affected individual Roku accounts and, in a limited number of cases, attempted to purchase streaming subscriptions,” Roku said. “However, access to the affected Roku accounts did not provide the unauthorized actors with access to social security numbers, full payment account numbers, dates of birth, or other similar sensitive personal information requiring notification.”
To reset your Roku account, go to my.roku.com and use the “forgot password?” option on the sign-in page.
Roku users with any questions about the incident are encouraged to contact Roku at 1-816-272-8106 or by email at account-help@roku.com.
For more information regarding warning signs of identity theft, how to report identity theft and how to protect yourself, visit USA.gov’s Identity Theft webpage.
RELATED CONTENT
-
Fed's Rate Cuts Could Have Impacts You Might Not AnticipateUnderstanding how lower interest rates could impact your wallet can help you determine the right financial moves to make.
-
Past Performance Is Not Indicative of Your Adviser's ExpertiseMany people find a financial adviser by searching online or asking for referrals from friends or family. This can actually end up costing you big-time.
-
I'm want to give my 3 grandkids $5K each for Christmas.You're comfortably retired and want to give your grandkids a big Christmas check, but their parents are worried they might spend it all. We ask the pros for help.
-
I'm a Financial Adviser: The Fed's Rate Cuts Could Have Impacts You Might Not Anticipate
Understanding how lower interest rates could impact your wallet can help you determine the right financial moves to make.
-
My Teen Crashed His Car and Now Our Insurance Has Tripled. What Now?Dealing with the costly aftermath of a teen car accident is stressful. Here are your options for navigating it.
-
My First $1 Million: Retired In-House Corporate Lawyer, 74, MidwestEver wonder how someone who's made a million dollars or more did it? Kiplinger's My First $1 Million series uncovers the answers.
-
I'm an Insurance Pro: Going Without Life Insurance Is Like Driving Without a Seat Belt Because You Don't Plan to CrashLife insurance is that boring-but-crucial thing you really need to get now so that your family doesn't have to launch a GoFundMe when you're gone.
-
The Top 22 Gifts for Grandkids from Walmart in 2025From PlayStation to Labubu, you'll find the hottest gifts of 2025 for your grandkids at Walmart this year. Some of them are up to 78% off.
-
CD vs. Money Market: Where to Put Your Year-End Bonus NowFalling interest rates have savers wondering where to park cash. Here's how much $10,000 earns in today's best CDs versus leading money market accounts.
-
Meet the World's Unluckiest — Not to Mention Entitled — Porch PirateThis teen swiped a booby-trapped package that showered him with glitter, and then he hurt his wrist while fleeing. This is why no lawyer will represent him.
-
Smart Business: How Community Engagement Can Help Fuel GrowthAs a financial professional, you can strengthen your brand while making a difference in your community. See how these pros turned community spirit into growth.
