News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • ROKU Ultra Streaming TV Boxes Have Been Hacked

    Posted on WSstarvinmarvin Comment on the AskWoody Lounge

    Home Forums Code Red – Security/Privacy advisories ROKU Ultra Streaming TV Boxes Have Been Hacked

    Tagged: 

    This topic contains 4 replies, has 5 voices, and was last updated by  cyberSAR 3 weeks, 2 days ago.

    • Author
      Posts
    • #2100236 Reply

      WSstarvinmarvin
      AskWoody Lounger

      I’m posting this as a Buyer Beware warning. Not certain it should be posted here, but wanted to let everyone know what’s going on.

      ROKU Ultra has been HACKED! Purchasers of a brand new ROKU Ultra are encountering a “Locked” screen during initial setup out of the box. The message on the screen says to call the phone number displayed on the TV screen to complete the setup. When you call the “agent” you speak with tells you you must pay $99 or $149 (for 1 or 2 years service) to unlock the ROKU Ultra and complete the setup. This is a total scam. Either ROKU’s servers have been hacked or the chip itself inside your new ROKU Ultra box has been hacked, take your pick.

      Real ROKU customer service reps admit (when you find and call their real phone number) that they are swamped with calls from angry customers over this exact problem. They also state that they do NOT charge any fees to activate a ROKU device.

      I was present last weekend when a friend of mine bought a brand new sealed-in-the-box ROKU Ultra streaming device from a Target store. We took it to his house and he proceeded to unbox it and connect it to his TV via HDMI cable. When he powered it on and began following the on-screen setup steps he encountered the big error message, called the number shown, and was greeted by an agent or rep who insisted my friend pay the “fee” to use the new ROKU. Will post this elsewhere on the internet, too.

      2 users thanked author for this post.
    • #2100256 Reply

      satrow
      AskWoody MVP

      https://community.roku.com/t5/Accounts-Billing-Orders/Activation-scam/td-p/499836 – not read all of it but I’d guess at some online intercept/redirect, maybe http instead of https or a typo.

      3 users thanked author for this post.
    • #2100258 Reply

      jabeattyauditor
      AskWoody Lounger

      DNS hijack…

    • #2100269 Reply

      Kirsty
      Da Boss

      There was an alert 2 years ago that Roku and Samsung devices were vulnerable to hacking. That is not to say that all Ultra Streaming TV Boxes have been hacked as your alarmist heading suggests! There is certainly no Twitter discussions among the well-respected cyber-security community on such a hack in recent times.

      From early 2018:
      https://www.askwoody.com/forums/topic/samsung-roku-smart-tvs-vulnerable-to-hacking/
      https://www.tomsguide.com/us/roku-samsung-smart-tv-flaws-security,news-26580.html

      I suggest the two replies above hold the key. I would also suggest anyone connecting their smart TVs to their home network first check out Michael Horowitz’s security hints on routersecurity.org

      1 user thanked author for this post.
    • #2116408 Reply

      cyberSAR
      AskWoody Plus

      Thanks for posting this. Just had a call from a client that had this occur and yes, he did allow them into his computer, but disconnected pretty quickly thereafter. Saved me a bunch of time as I remembered this post! Thank You! 🙂

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: ROKU Ultra Streaming TV Boxes Have Been Hacked

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.