Roku suffered another data breach, this time affecting 576,000 accounts
Roku suffered another data breach, this time affecting 576,000 accounts
www.engadget.com
Roku suffered another data breach, this time affecting 576,000 accounts
43 comments
-
Can't wait till we find out that the arbitration agreement they forced on people was penned up shortly after they discovered the breach.
-
I think its already been shown that it was penned up shortly after they discovered the last breach.
-
Never buying a Roku product ever again. Their TVs used to be a good deal but I’ll play a premium for something else next time.
-
-
Life is so much better after I gave up on these atrocious media boxes and TV operating systems and just use a small computer connected to the TV.
I control the interface, I control the connection, it works perfectly. Steam Link for games, Jellyfin for media - always working, never showing ads, never bothering me with accounts or updates.
-
I've been looking to do something like that.
I have a NAS running my JellyFin server in a container, i'd like to have the box/pc connected to my tv running something open source with the respective clients for my streaming services.
Kodi seems like it's a hassle to get streaming apps working seamlessly.
-
Streaming apps
You people never learn, do you? If youre not pirating, you're at risk.
-
-
I'm about to make my own android tv box with a raspberry Pi 5
Tried to use it straight with Linux as an OS but emby (paid jellyfish) didn't quite work well enough
-
I feel like Jellyfin is a better solution than something like Plex, but I still feel like there is a trade off. I’m not dealing with ads, accounts, and content appearing / disappearing. But I was the TV and media library’s sys admin in the house, and that came with a different set of inconveniences.
-
Tbh Kodi is just kinda a hassle in general. I much prefer Jellyfin and will probably ditch Kodi in favor of it in the near future.
-
That's absolutely correct, and something to keep in mind in case you're already stressed out with work or lacking free time.
Nowadays, after the initial setup, tools like Sonarr rarely give me trouble - but once I a while I'll have to sit down and resolve a conflict with file naming, for instance. Or when series have weird releases like animes breaking naming conventions for seasons.
-
-
Is there a guide that you used for setting up?
-
I didn't follow a guide, but there are many good ones online.
For games, really just install Steam on your main computer and the TV client, make sure Remote Play is configured to use the most out of your connection and set to the desired resolution. This is about it.
For torrents, you want a downloading client (I use qBittorrent), software that will automatically download movies and TV shows based on what you want (Sonarr, Radarr, all the *Arr stuff) and some server that will store the media and organize it in a "Netflix-like" easy to use interface, for that I use Jellyfin on my main PC.
So in short, for games, I open Steam Big Picture, select the game, I'm playing. For media, my PC downloads everything I want at night and during the day it's all there with subtitles, episodes, descriptions, etc, ready to play by opening up Jellyfin. It's mostly hands off, but the initial setup can be a bit painful if you've never used these tools before, specially dealing with the *Arr setup.
-
-
-
Hey, at least their research is focusing on serving you ads through HDMI instead of security, so even if you're not using the Roku, you can still get their ads over HDMI.
-
You don't need security if you're a virus...
-
-
I'm thankful Roku has had data breaches. Mostly because I have a Roku TV that was somehow compromised and now, even after a couple of years and several full factory resets, whoever used my throwaway account signed up for all the streaming services at the highest tier. Hard to be mad when I havent had to pay for anything.
And no, before anyone says anything, it's not putting my home network at risk, as it's just the Roku account that's compromised. Nothing tied to me personally, not even a card/address on the account, so I just chalk it up to "as long as it keeps working, Im not worrying about it".
-
Free stuff is great and all, but I imagine they’re using a stolen CC to pay for those subscriptions and they’re exploiting someone who’s not great at paying attention to their credit card bill.
You may want to report it so that someone isn’t getting fucked over.
-
My account is with mailinator (free throwaway email) and I'm hopeful someone does this for me. That sounds quite nice.
-
But it’s probably using a stolen CC. I wouldn’t feel too great about using someone else’s credit card without their knowledge. I’d report it and try to get the card suspended.
-
I used to blame my cousin, as she has a raging drug addiction and does shady crap like steal people's credit cards/checks and it was only after she had been over that I had noticed. But nope, still going despite time and resets. If I knew a way of pulling login info off the TV, I'd probably share it, because hell, why not.
-
-
-
This is not a "Roku data breach."
This is a use of compromised user credentials, with Roku as the target.
-
Yeah, but they don’t have contemporary best practices in place that would’ve reduced their exposure to this.
-
The only thing that would have prevented this in this context would be mandatory MFA. Did they have that? No, but there's a huge number of places that are way more sensitive than a streaming platform that don't have mandatory MFA (coughETradecough).
It is wholly misleading to characterize this as a "Roku data breach," and it's disingenuous to portray Roku in this instance as somehow glaringly worse than everyone else.
-
Will be interesting to see how people react when Netflix rolls out mandatory two factor auth for logins.
-
-
-
i believe that data breaches are so frequent, that we now have a dedicated community to post these.
43 comments