Expert commentary on the Plex data breach
August 2022 by Geoffrey Fisher - Sr. Director, Integration Strategy at Tanium
Streaming media platform Plex have suffered a data breach as they ask users to reset their passwords. The commentary from Geoffrey Fisher, Sr. Director, Integration Strategy at Tanium on how this breach highlights the need for multi-factor authentication.
"It appears Plex has put forth a sound incident response, and what appears to be many security best practices, but suffered an additional blow due to resources issues that further crippled their system when users attempted to change credentials en masse. What’s interesting is the potential fallout stemming from the tech “savviness” of Plex’s subscriber base and how they will respond to this breach. There could be implications down the road.
"Ultimately, this intrusion reinforces the seemingly age-old adage to avoid the reuse of passwords. As a call to action, users should heed the recommendation to change their Plex credentials and utilize the available multi-factor authentication. More importantly, they should ensure they never reuse passwords across applications or platforms. This can’t be overstated because a successful attack can happen against any organization, so it’s important to do your part with password variations to mitigate the fallout."