Over 15K Roku Accounts Hacked in Credential Stuffing Attack

On March 8, Roku disclosed that 15,363 customer accounts were compromised in a data breach incident, said to have occurred over a period of three months starting December 28, 2023.

The popular streaming TV company in a breach notice filed with the Office of the Maine Attorney General revealed that the incident was first discovered on January 4, 2024. Using credentials exposed in third-party data breaches, the attackers used the hacked account details to commit fraudulent purchases.

‘’It appears likely that the same username and password combinations had been used as login information for such third-party services as well as certain individual Roku accounts’’, Roku’s data breach notification revealed.

‘’As a result, unauthorized actors were able to obtain login information from third-party sources and then use it to access certain individual Roku accounts.’’

On gaining access, the attackers not only changed the login details, like email IDs and passwords, but in a few instances also attempted to purchase streaming subscriptions and hardware.

The company was quick to assure the affected customers that despite the breach, the hackers were unable to access social security numbers, full payment account numbers, dates of birth, or other sensitive personal information.

Roku said that the impacted accounts were secured from ‘’further unauthorized access’’ by forced password resets. In addition to notifying law enforcement, its security team investigated account activity for any fraudulent transactions.

If found, steps were taken to cancel and refund any unauthorized subscriptions as well as charges.

Impacted customers were notified of the incident, and legitimate account holders were advised to visit ‘’my.roku.com’’ and click on the “Forgot password?” button to receive a password reset link.

Users were also advised to review their subscriptions and connected devices linked to their accounts.

This is not the first time that Roku has been targeted by threat actors. The growing popularity of the streaming device has made it an easy target for actors with nefarious intentions. And because of the methods used to interact with a Roku device and Roku’s services, there are a lot methods used by scmamers to con people, including device takeover, phishing emails, activation scams, and offering fake deals.

If your Roku account has been compromised, secure your account and fill out Roku’s scam report form immediately.