Apr 12, 2024 - Business

Roku announces 576,000 accounts compromised in security breach

a hand holding a TV remote control points to a screen that displays the Roku logo

A hand holding a TV remote control points to a screen with the Roku logo. Photo: Rafael Henrique/SOPA Images/LightRocket via Getty Images

Streaming service Roku announced Friday that roughly 576,000 accounts were compromised in a newly discovered security breach.

Why it matters: This is the second mass data breach for the company in a matter of weeks. Last month, Roku disclosed that hackers had accessed more than 15,000 Roku accounts.

The big picture: After investigating the first incident, Roku notified affected customers and continued to closely monitor account activity, the company said in a statement Friday.

  • "Through this monitoring we identified a second incident, which impacted approximately 576,000 additional accounts," the statement added.
  • Roku said it didn't find any evidence that it was the source of the account credentials used in either of the attacks, nor that Roku's systems were compromised by either incident.
  • In less than 400 cases, hackers logged into Roku accounts and made unauthorized purchases but they didn't gain access to sensitive information, like full credit card numbers, the company said.

What to watch: Roku said it is notifying affected customers directly and has reset the passwords of affected accounts, as well as reversing any unauthorized charges.

  • The company has also enabled two-factor authentication for all accounts.
  • "We sincerely regret that these incidents occurred and any disruption they may have caused. Your account security is a top priority," Roku added.
Go deeper