I recently had my Disney+ account hacked, and I’m shocked at how utterly awful their platform is… I got an email about a new login from Italy… I live in the USA.

WE NOTICED A NEW LOGIN TO DISNEY+ We noticed a new login to Disney+, was it you? Here are the details: Device Type: Android Phone Location: Taranto, TA, IT (may not match exact location) Time: August 27, 2024 4:02PM

Um, right suspicious obviously. Nothing in the email to say NO THIS WASN’T ME, just ‘manage devices’ ok so I’ll try resetting my password… You can’t reset your password… If you hit ‘forgot password’ it sends a code to your email. I also couldn’t get to the account page because it takes you right to resubscribe page… So if your account is hacked, you can’t change your password, you can’t close the account, you can’t select any option that you’ve been hacked.

I also reached out to customer support chat, which appeared to be an AI/bot. It was obvious it was a bot, because it was so un-human like even though they gave it a name “John S”. I provided the exact email message I got, and he asked: “My account was hacked. I got a suspicious login from italy.” “For this, May I know the error message we are getting when you logging in?”

Like wow… Has anyone noticed this?

    • bitwise@lemmy.ca
      link
      fedilink
      English
      arrow-up
      0
      ·
      27 days ago

      This is the real question. They gloss right over the part where they didn’t do anything with the reset link.

  • otp@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    ·
    27 days ago

    I got a new phone number once, and I tried to link it to my Amazon and AirBnB accounts.

    Amazon basically said “you need to delete your old account if you can’t log in to delink your phone number”. The guy who used to have my number didn’t figure out what was happening, so his Amazon account got deleted.

    AirBnB sent a OTP for his account to my phone number and let me log into his account with nothing but that.

    • DuckWrangler9000@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      27 days ago

      Wow… that’s crazyyyy. It’s like these companies don’t care if their customers’ accounts get hacked, but they take their own cybersecurity very seriously.

      • NutinButNet@hilariouschaos.com
        link
        fedilink
        English
        arrow-up
        0
        ·
        27 days ago

        Many corporations do not take cybersecurity seriously at all. Speaking as someone who works the security at my job.

        They only care when shit hits the fan. Thankfully mine is a little better because we saw our competitor get hit and our CEO then started allocating major funds for security. Even then…it still isn’t quite what it should be.