Plex Got Hacked - Did You Get The Notification?

pharkurnell on 09/09/2025 - 15:01
Last edited 09/09/2025 - 15:15 by 1 other user

Had a search didnt see any mention of it but a few users I know got the warning email - but I didnt..

https://forums.plex.tv/t/important-notice-of-security-incide…

Dear Plex User,

We have recently experienced a security incident that may potentially involve your Plex account information. We believe the actual impact of this incident is limited; however, action is required from you to ensure your account remains secure.

What happened

An unauthorized third party accessed a limited subset of customer data from one of our databases. While we quickly contained the incident, information that was accessed included emails, usernames, and securely hashed passwords.

Any account passwords that may have been accessed were securely hashed, in accordance with best practices, meaning they cannot be read by a third party. Out of an abundance of caution, we recommend you immediately reset your password by visiting https://plex.tv/reset. Rest assured that we do not store credit card data on our servers, so this information was not compromised in this incident.

What we're doing

We've already addressed the method that this third party used to gain access to the system, and we're undergoing additional reviews to ensure that the security of all of our systems is further hardened to prevent future attacks.

What you must do

We kindly request that you reset your Plex account password immediately by visiting https://plex.tv/reset. When doing so, there's a checkbox to "Sign out connected devices after password change," which we recommend you enable. This will sign you out of all your devices (including any Plex Media Server you own) for your security, and you will then need to sign back in with your new password. We understand that this means a little more work for you, but it will provide additional security to your account.

Additional Security Measures You Can Take We remind you that no one at Plex will ever reach out to you over email to ask for a password or credit card number for payments. For further account protection, we also recommend enabling two-factor authentication on your Plex account if you haven’t already done so.

Lastly, we sincerely apologize for any inconvenience this situation may cause you. We take pride in our security systems, which helped us quickly detect this incident, and we want to assure you that we are working swiftly to prevent potential future incidents from occurring.

For step-by-step instructions on how to reset your password, visit: https://support.plex.tv/articles/account-requires-password-reset

Thank you,

The Plex Team

Poll Options

  • 48
    I use Plex & received it.
  • 39
    I use Plex, but didn't receive it.
Entertainment

Related Stores

Plex
Plex

Comments

  • jv on 09/09/2025 - 16:16
    +3

    I changed my password…

    Don't want some Russian hacker watching my movies !!!!

    • c64 on 09/09/2025 - 16:20
      +3

      the little mermaid and snow white? surely it's not THAT embarrassing?

      • EightImmortals on 09/09/2025 - 16:55
        +1

        Depends on the version. wink, wink…

        • FireRunner on 09/09/2025 - 19:35

          Russian hacker disgusted at finding the Disney live action remakes of the little mermaid and Snow White on JV’s plex

  • freefall101 on 09/09/2025 - 16:21
    +5

    The joy of the modern world, I have local software serving local media. So of course I need that password in the cloud! (even if it is hashed).

    This is why I moved to Jellyfin. At least when I get hacked it'll be my own fault.

    • jv on 09/09/2025 - 21:49
      +1

      Jellyfin is crap though…

      • peteru on 10/09/2025 - 14:14

        Zidoo to the rescue.

  • pegaxs on 09/09/2025 - 16:47
    +3

    Mah, didnt get it. But I have a HUGE, single use password, so they can have that. I also have 2FA set up, so I get an alert if someone even tries to log into my account.

    I kinda want them to get into my account, because i dont know how much use 4TB of Hentai and 500GB of 60~70's obscure opera ballads is going to please them.

  • McMaferMur on 09/09/2025 - 17:22
    +1

    not the first time for them i think

  • Shame on 09/09/2025 - 17:42
    -1

    XBMC for the win! 🥳

    • Dejy on 09/09/2025 - 19:06
      +1

      They call it Kodi these days.

      • SydStrand on 09/09/2025 - 19:37
        +2

        I don't even think they say 'for the win' these days.

        • Shame on 09/09/2025 - 19:42
          +2

          💨

  • o53djz7qTPY4der on 10/09/2025 - 07:30
    +2

    Much the same here. I have a unique password plus 2FA turned on. With the passwords hashed, I really don't see any risk.

    This is Plex being transparent and overly cautious.

Login or Join to leave a comment
Login Join