Vudu resets user passwords after burglars steal hard drives

By on April 10, 2013, 10:32 AM

Vudu has issued a mandatory password reset for its users after experiencing a security breach late last month. With these types of stories, "security breach" usually implies that a hacker has compromised a company's servers remotely, gaining access to sensitive information through digital means. That's not the case here.

Instead, Vudu's robbers took the less glamorous approach of physically breaking into the company's office on March 24 and stealing various items, including hard drives that contained user data. The Walmart-owned video streaming service's investigation has revealed that the stolen drives held customers' names, email addresses, postal addresses, dates of birth, phone numbers, account activity and the last four digits of some credit card numbers.

However, on the bright side, Vudu has stressed that the drives didn't contain full credit card numbers, which the company doesn't store. Additionally, folks who log into the service through other sites and haven't set up Vudu-specific credentials shouldn't have to worry about their passwords.

Users who set up a Vudu password don't necessarily have to panic either as they were stored in an encrypted state. Nonetheless, the company has forced a password reset across the board and it's encouraging users who use their Vudu password on other sites to change those too. "We believe it would be difficult to break the password encryption, but we can't rule out that possibility given the circumstances of this theft," Vudu CTO Prasanna Ganesan wrote in an email to subscribers. "So we think it's best to be proactive and ask that you be proactive as well."

The company has a detailed FAQ page covering the break-in, including information about how to reset your password and eligibility for free identity protection services from AllClear ID that will cover affected users for a year starting from yesterday, April 9.




User Comments: 4

Got something to say? Post a comment
Tygerstrike said:

WOW! A actual physical theft?! Talk about low tech. Im surprised at the brazeness of this action. You would figure that hacking would have been the safest appraoch for them. Less chances at getting caught. But a physical burglary? Well they left clues as to who they were. Finger prints, hair and fibers, possibly some DNA. I will give them points for balls, but then take some away for general stupidity.

Chazz said:

WOW! A actual physical theft?! Talk about low tech. Im surprised at the brazeness of this action. You would figure that hacking would have been the safest appraoch for them. Less chances at getting caught. But a physical burglary? Well they left clues as to who they were. Finger prints, hair and fibers, possibly some DNA. I will give them points for balls, but then take some away for general stupidity.

They'd never see it comin!

davislane1 davislane1 said:

WOW! A actual physical theft?! Talk about low tech. Im surprised at the brazeness of this action. You would figure that hacking would have been the safest appraoch for them. Less chances at getting caught. But a physical burglary? Well they left clues as to who they were. Finger prints, hair and fibers, possibly some DNA. I will give them points for balls, but then take some away for general stupidity.

I doubt the police are going to pursue common thieves so relentlessly. There will be a routine investigation that ends with an insurance claim. Unless they did something profoundly stupid during the burglary they'll be laughing all the way... Well, to wherever they're going.

tipstir tipstir, TS Ambassador, said:

Oh well there goes my account. Vudu very pricey they need to lower it otherwise I'll just use Amazon Instant Videos and Netflix. CrackleTV (free with ads)

Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.