Credit: Ryan Haines / Android Authority
- Over 15,000 Roku accounts were compromised using stolen login credentials.
- Hackers had access to stored credit card information and used it for fraudulent transactions.
Streaming giant Roku disclosed a data breach impacting over 15,000 customers. The hackers exploited stolen login credentials to gain unauthorized access and make fraudulent purchases.
Roku notified consumers about the breach last Friday, revealing that hackers used a technique called “credential stuffing” to infiltrate 15,363 accounts. Credential stuffing involves using leaked usernames and passwords from other data breaches to try logging into accounts on different services. These attacks started in December 2023 and continued until late February 2024, as per the company.