Plex Media might be best known as the streaming service suited for creating custom TV channels, but it turns out those servers can be abused for more nefarious purposes.
On Thursday, the cybersecurity firm Netscout reported that the same custom servers used to host these channels are also being used to beef up denial of service (aka DDoS) attacks—all without Plex’s customers even knowing.
#CoSoSec
https://gizmodo.com/plex-media-has-a-big-security-flaw-1846205644
@ecksmc
This makes me glad I only use Plex for streaming local content, with no external access allowed.
@voltronic never been a big Plex user myself
used it in occasion over the years
@ecksmc
I use it to access all of my music and videos from my living room system. It works great for that.
@ecksmc I'll bet dollars to donuts that it's lax port forwarding rules to get docker and k8 stuff to work. I see that a lot now that more containers are being put into the mix using more weird ports.
update statement: