Digital streaming service Plex recently disclosed a data breach that may have compromised members' email addresses, passwords, and usernames.

Suspicious activity was first noticed yesterday (Tuesday, August 24), according to an email Plex sent to customers this morning. Upon further inspection, Plex has determined that an unknown third party has gained access to information in one of its databases.

That data includes usernames, email addresses, and encrypted passwords. While Plex assures subscribers that the potentially compromised passwords are “hashed and secured using best practices,” it remains cautious. It also tells customers not to worry about credit card or other payment information, since that category of data isn’t stored on the company’s servers. So it wasn’t at risk in the first place.

Plex members are being asked to reset their account passwords as soon as possible and to check the “Log out connected devices after password change” box as an added precaution. And consider enabling two-factor authentication if it isn’t already enabled. The company also advised subscribers to never give out passwords or credit card numbers via email to anyone claiming to be from Plex. Additionally, the streaming service said it’s doing everything it can to bolster its defenses and tighten security to help prevent a similar breach from happening again.