Roku has been hit by cyber hackers who gained access to 15,363 accounts and took usernames and passwords that customers also used on other websites, the TV streaming platform recently disclosed.
The breach, reported on March 8, occurred between December 28, 2023 and February 21, according to a disclosure notice with the Maine Attorney General's Office.
Roku said it has already reset the account passwords of those affected by the cyber attack, but encourages users to also take the following steps:
Sign up for Kiplinger’s Free E-Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
What to do
- Review the subscriptions and the devices linked to your account, which you can view on your account dashboard.
- Always use a strong, unique password for each of your online accounts. For more information, visit Roku's how to create a strong and secure password for your account site.
- Regularly review statements from your account and obtain your credit report from one or more of the national credit reporting companies. You can obtain a free copy of your credit report online at www.annualcreditreport.com or by calling toll-free 1-877-322-8228.
Hackers tried to buy subscriptions
The breach is the latest in a long line of cyber attacks on businesses and follows a massive breach at 23andMe last December. The breach at the genetic testing company also involved hacks of accounts in which customers used the same passwords and usernames from other websites.
Experts warn customers to change their passwords often and don't use the same ones across accounts.
In a March 8 letter sent to users, Roku said that it observed suspicious activity "indicating that certain individual Roku accounts may have been accessed by unauthorized actors.”
After an investigation, Roku found that unauthorized actors likely obtained the usernames and passwords of subscribers from third-party sources, such as data breaches of other services that those subscribers use, and then used those same logins and passwords to gain access to Roku accounts.
“After gaining access, they then changed the Roku login information for the affected individual Roku accounts and, in a limited number of cases, attempted to purchase streaming subscriptions,” Roku said. “However, access to the affected Roku accounts did not provide the unauthorized actors with access to social security numbers, full payment account numbers, dates of birth, or other similar sensitive personal information requiring notification.”
To reset your Roku account, go to my.roku.com and use the “forgot password?” option on the sign-in page.
Roku users with any questions about the incident are encouraged to contact Roku at 1-816-272-8106 or by email at account-help@roku.com.
For more information regarding warning signs of identity theft, how to report identity theft and how to protect yourself, visit USA.gov’s Identity Theft webpage.
RELATED CONTENT
-
Social Security Will Continue Sending Paper Checks Sparingly, Reversing CourseThe Social Security Administration has backed off from plans to eliminate paper checks. However, it will only send checks in the mail as a matter of last resort.
-
Ask the Editor — Tax Questions on Four New Tax DeductionsAsk the Editor In this week's Ask the Editor Q&A, we answer tax questions from readers on four new tax deductions in the "One Big Beautiful Bill."
-
The Five Best Side Hustles for RetireesMore older people are working in retirement to boost income and stave off boredom. These gigs and hustles make the most sense for the golden years crowd.
-
TSA’s New Family Lanes Aim to Take the Stress Out of Summer TravelThe “Families on the Fly” campaign introduces family-friendly security lanes and discounted TSA PreCheck fees — just in time for peak travel season.
-
From Piggy Banks to Portfolios: A Financial Planner's Guide to Talking to Your Kids About Money at Every AgeFrom toddlers to young adults, all kids can benefit from open conversations with their parents about spending and saving. Here's what to talk about — and when.
-
Retirement in the Age of Cyber Scams: How To Protect Your Next ChapterRetirement is meant to be a time of relaxation and living life on your terms. But for many retirees, this dream is under threat from a growing epidemic — cyber scams.
-
Heat Wave in Europe: What Every Traveler Needs to KnowRecord-breaking summer temperatures, wildfires, and travel disruptions — they’re reshaping summer 2025 trips. Here’s how to stay safe, prepared and savvy.
-
You'll Kick Yourself in the Fall if You Don't Make This Savings Move NowInflation will likely prevent the Fed from cutting rates until the fall. However, does a long-term CD provide enough of a return to outpace climbing prices?
-
Spot Heat Exhaustion in Your Pet Before It Costs Them — and YouHeat strokes aren't just for humans. The signs of heat exhaustion in pets can be harder to spot, but just as deadly.
-
A Financial Planner's Guide to Unlocking the Power of a 529 Plan529 plans are still the gold standard for saving for college, especially for affluent families, though they are most effective when combined with other financial tools for a comprehensive strategy.
