DMR News

Advancing Digital Conversations

News Americas Latest Newsbreak Technology

Plex Advises Password Reset Following Data Breach

ByHilary Ong

Sep 11, 2025

Plex Advises Password Reset Following Data Breach

Streaming platform Plex is asking customers to reset their passwords after disclosing a security breach involving one of its user databases.

In a post on Monday, the company confirmed that account information, including usernames, email addresses, scrambled passwords, and unspecified authentication data, was stolen. While the passwords were encrypted, Plex has not clarified whether the scrambling method could be cracked, raising uncertainty about the level of risk to users.

Plex has recommended customers reset their passwords through its official password reset form and log out of all connected devices.

Company Response

Plex stated that it has already fixed the vulnerability used to access the system but did not provide further details on when the breach occurred, how long attackers had access, or how many users were affected. With an estimated 25 million users worldwide, the scope of the breach remains unclear.

When asked about the hashing algorithm used for scrambling passwords—a key factor in determining security strength—the company declined to specify. Plex also has not revealed whether it has received any ransom demands or direct communication from the hackers.

While organizations that experience data breaches often force-reset passwords to ensure protection, Plex has stopped short of doing so. The company instead encouraged users to take action themselves. This choice has raised questions about its overall transparency and its handling of the incident.

Author’s Opinion

Plex’s decision not to force a universal password reset seems risky, especially when so many details remain unknown. Users deserve clarity on how secure their data really is and which protections were in place. Without transparency about when the breach occurred, what was accessed, and what safeguards are now active, Plex risks losing the trust of its global user base. In cybersecurity, silence often causes more damage than the breach itself.

Featured image credit: Wesley Fryer via Flickr

For more stories like it, click the +Follow button at the top of this page to follow us.

Hilary Ong

Hello, from one tech geek to another. Not your beloved TechCrunch writer, but a writer with an avid interest in the fast-paced tech scenes and all the latest tech mojo. I bring with me a unique take towards tech with a honed applied psychology perspective to make tech news digestible. In other words, I deliver tech news that is easy to read.

Related News

Median Household Income Saw Little Growth Under Biden
Sep 11, 2025 Hilary Ong
Unihackers Opens Enrollment for September Cybersecurity Program Intake.
Sep 11, 2025 Ethan Lin
Unihackers Opens Enrollment for September Cybersecurity Program Intake.
Sep 11, 2025 Ethan Lin

Leave a Reply

Your email address will not be published. Required fields are marked *

DMR News (Digital Market Reports) is a brand of PulseDirect Communication LLC.

DMR News was established in 2020 to be a trusted source for digital market news and to encourage more conversations about the ever-evolving digital landscape. The inception of DMR News was marked by a recognition of the rapidly evolving digital landscape and the need for a dedicated platform that could keep pace with its constant transformations.

PulseDirect Communication LLC
Sheridan, WY 82801, USA

DMR News

Advancing Digital Conversations

© 2025 PulseDirect Communication LLC. All rights reserved. | 30 N Gould ST STE R, Sheridan, WY 82801