Plex Forums were breached according to Plex at 1pm PDT on July 1st, 2015, gaining access to some personal information including IP addresses, forum private messages, email addresses and encrypted (hashed and salted) passwords for forum users. For your protection Plex reset all plex.tv passwords of linked forum accounts. According to a post on reddit the hacker is requesting bitcoin payment or the data will be released:
My name is savaka and I like to hack things. Recently https://plex.tv/ (s) forum & website was compromised by me. I managed to obtain all of your data, customers as well as software and files.
I replaced the index.php of the administrator cpanel with a nice message, but the ones in charge of your data decided that it would be pretty lulzy’ to remove the message and place the original index back there.
I gave them until the 3rd of this month to send 9.5 BTC to redacted or I would release all this data.
This ransom is still active and on the 3rd: if no BTC payment is made, the ransom wll go up by 5 BTC.
Eventually if no BTC payment is made, the data will be released via multiple torrent networks and there will be no more plex.tv
You can also pay me to remove your data from the content that’s going to be released by e-mailing redacted – If you send an e-mail without BTC ready to send, I will add your data to a special list.
P.S I don’t care who the BTC comes from as long as the payment is made: no data will be release
Here’s the statement from the Plex team:
Sadly, we became aware this afternoon that the server which hosts our forums and blog was compromised. We are still investigating, but as far as we know, the attacker only gained access to these parts of our systems. Rest assured that credit card and other payment data are not stored on our servers at all.
The attacker was able to gain access to IP addresses, private messages, email addressees and encrypted forum passwords (in technical terms, they are hashed and salted).