It's been a week since the launch of the service. Thousands of Disney Plus accounts are hacked

It's been a week since Disney launched its Disney Plus video streaming service, and thousands of accounts have been compromised and on sale in the cybercriminals' markets, and many users have reported the theft of their Disney Plus accounts on their websites, according to technology website Znet.

It's not that Disney Plus itself has been hacked, but most account hijackings are probably caused by the use of used passwords, meaning that account owners use passwords they already use in other accounts.

If one of these accounts suffers from data breaches, hackers can steal those passwords and use them in credential stuffing, in an attempt to gain access to non-compromised services.

Credential Stuffing is a type of cyberattack, where stolen account credentials typically consisting of usernames and / or email addresses and associated passwords are used to gain unauthorized access to user accounts through targeted large-scale automated login requests. Towards a web application.

The hacking of other Disney Plus accounts may also be the result of malware stealing passwords, phishing messages, violent attacks against weak passwords and easy-to-reset password reset questions.

Disney could have created a clutter of reactions to the hacking of its service accounts by providing the option to use two-factor authentication in passwords, which makes it more difficult to hack accounts even if a valid password is used.

Other video streaming services such as Netflix and Hulu do not offer a 2-step verification option, although Amazon, Google, Facebook and dozens of other Internet services offer this option. This may be due to Disney Plus and its sisters' desire to enhance audience viewing by streaming account passwords with Friends and family members.

How to protect your Disney Plus account?
Until Disney switches to using the 2-Step Verification option in your passwords, your account may still be vulnerable, so you should use a strong password of at least 12 characters that combines high and low letters of English, including numbers and symbols, and be unique. Not used anywhere else.

If you receive an email, a social media message, or a text message telling you that your Disney Plus account is at risk, do not click on any link that message says. Instead, open a new tab in your browser and manually login to your Disney Plus account.

You can also use a password management software to help you save your different account passwords and create strong passwords.