Back to Data Breach

Data Breach

Thousands of Disney Plus user credentials hacked and sold online. 

On November 12, 2019, Disney Plus, a highly anticipated streaming service, was launched. However, within few hours of its release, cyberattackers hacked the accounts of users and locked them out, leaving them with no access to the accounts. According to an investigation conducted by ZDNet, the account credentials are available on several dark web forums for as little as $3 to $11 per user. 

The incident

In the first 24 hours of its launch in the US, Canada, and the Netherlands, the customer base rose to 10 million subscribers. Unfortunately, the servers crashed on the day of its release, with some of its subscribers complaining that they were unable to stream their favorite shows and movies, and some of them were unable to access their accounts altogether. 

Disney Plus data breach

Some of the affected users claimed that they have reused their passwords, so it’s likely that the account credentials were obtained from a credential stuffing attack. But many other affected users reported that they had used unique passwords. Like most streaming services, Disney Plus allows password sharing, meaning an account can be accessed from different devices in different locations. Disney Plus also doesn't have multi-factor authentication, which could have prevented the breach to an extent. 

Disney responded to the incident saying, “We have seen a very small percentage of users in this situation and encourage any users who are having these kind of issues to reach out to our customer support so we can help them.

Don’t want to make the headlines for the wrong reasons? It's important to invest in a tool that will protect your network from brute-force attacks, ransomware threats, and denial-of-service (DoS) attacks. Download ManageEngine Log360, a tool that helps combat both internal and external security attacks.

How ManageEngine can help.

Log360, our comprehensive SIEM solution, can help your organization by:

  • Alerting security teams in real time about events that require their immediate attention, such as network attacks, unauthorized access attempts to files or folders, security group membership changes, and account lockouts.
  • Detecting unauthorized network access attempts with its built-in Structured Threat Information eXpression (STIX/TAXII) feeds processor. Log360 also has a global IP threat database that can instantly detect known malicious traffic passing through the network as well as outbound connections to malicious domains and callback servers. 
  • Finding potential insider threats with its user and entity behavior analytics engine, which creates a baseline of normal activities that are specific to each user and notifyies security personnel instantly when there's a deviation from this norm. 
  • Obtaining important forensic information about incidents. The collected logs can be securely archived to help prove adherence to compliance standards and reduce potential legal penalties during investigations.
  • Automatically raising incidents as tickets to specific technicians in ServiceDesk Plus, JIRA, Zendesk, Kayako, or ServiceNow to create an incident resolution process that's swift and accountable.

Download a free trial of Log360 to see the tool in action for yourself.

© 2022 Zoho Corporation Pvt. Ltd. All rights reserved.


Stay In The Know

Thank you

You will receive weekly cybersecurity news soon!

  • Please enter a business email id
    By clicking 'I'm Interested', you agree to processing of personal data according to the Privacy Policy.