Hackers didn't waste any time before trying to attack the Magic Kingdom's latest endeavor.
Thousands of Disney+ accounts were hijacked within hours of its launch. The new service, which allows customers to stream Disney entertainment, apparently is sending a stream of compromised accounts to the Dark Web.
And now, hacking forums are flooded with accounts for sale.
ZDnet covered the attacks:
What Disney+ is facing right now is what other streaming services have been fighting against for years. Hacking forums have been overflowing with hacked Amazon Prime, Hulu, and Netflix accounts.
The reason hackers are still putting up new accounts for sale on a regular basis is because people are buying.
Users received notices that their passwords had been changed and they then found themselves locked out of their accounts. The problem appears to be both security bad habits and prior data breaches.
Two users who spoke with ZDNet on the condition we do not share their names admitted that they reused passwords. However, other users said online that they did not, and had used passwords unique for their Disney+ accounts.
This suggests that in some cases hackers gained access to accounts by using email and password combos leaked at other sites, while in other cases the Disney+ credentials might have been obtained from users infected with keylogging or info-stealing malware.