Hackers are selling stolen Roku accounts for just $0.50 each, and using them to buy streaming devices with stored credit cards. Don't let your account be next!

Continue reading

A third-party software flaw inside one of Japan's largest telcos exposed login credentials for up to 14.2 million email accounts across six ISPs. The passwords? Some were hashed. Some may not have been
The recent data breach affecting over 15,000 Roku customers discloses critical vulnerabilities in online security protocols. Threat actors capitalized on credential stuffing techniques, exploiting reused login credentials across multiple platforms. This Threatfeed delves into the intricacies of the data breach, its implications.
Roku disclosed a breach stemming from credential stuffing attacks, wherein threat actors utilized compromised login credentials to infiltrate user accounts. Once breached, threat actors manipulated account details, including passwords and email addresses, enabling illicit purchases with stored credit card information.
The breach underscores the rampant use of credential-stuffing tools like Open Bullet 2 and SilverBullet. These tools facilitate automated attacks by importing custom configurations tailored to specific websites, bypassing traditional security measures like brute force protections and CAPTCHAs.
Stolen Roku accounts fetch remarkably low prices on underground marketplaces, exemplifying the commodification of personal data. Threat actors not only sell compromised accounts but also guide exploiting them for fraudulent purchases, perpetuating a cycle of cybercrime.
Roku's response involved securing breached accounts, enforcing password resets, and refunding unauthorized transactions. However, the absence of two-factor authentication remains a glaring deficiency, leaving accounts vulnerable to future attacks.
Roku's alteration of Dispute Resolution Terms in response to the breach raises legal questions regarding user consent and dispute resolution processes. While Roku contends the changes are unrelated to the breach, their timing suggests otherwise, hinting at potential legal ramifications.
Users must adopt robust cybersecurity practices, including the use of unique, complex passwords and regular monitoring of account activities. Additionally, the implementation of two-factor authentication can significantly bolster account security, mitigating the risk of credential-based attacks.

Hackers exploited a four-year-old credential in Klue's systems to steal customer data, impacting LastPass and several cybersecurity firms in a supply chain breach