Archive for Cineplex

Cineplex Appears To Be Under Attack…. Again

Posted in Commentary with tags , on April 17, 2024 by itnerd

I’ve been tipped off to Canadian movie theatre chain Cineplex being under a credential stuffing attack. This is not the first time that this has happened from what I can tell. Which makes me wonder why Cineplex is a frequent target of this.

In any case, users who are affected by this credential stuffing attack will get an email that looks like this:

Now when one gets an email like this, they should validate that the email is legitimate by checking the email addresses of who sent it and the reply to email address. Both of those checked out when I examined the email that a reader of this blog got. But that doesn’t mean that you’re in the clear. What you should always do if you get one of these emails is go directly to the website and try to log in. If you can’t log in, you should reset the password from there. Or put another way, you should not trust the links that are in any email because even if the email addresses check out, they could have been spoofed.

In the case of this user, they followed my advice to the letter, but Cineplex never sent them a password reset email. That’s a sure sign that Cineplex has larger issues at the moment that are not good for Cineplex. I don’t expect the company to say anything on this. But if they did, I suspect the news will not be positive. In the meantime, if you get one of these email, you should try to take action as soon as you can.

2 Comments »

It Appears That Cineplex Is Under Attack

Posted in Commentary with tags on July 13, 2023 by itnerd

Cineplex is a major movie theatre chain here in Canada. And it appears that they are under attack based on this email that I just received:

This to me suggests that Cineplex is under some sort of a credential stuffing attack. And it’s happened before. Thus I reset my password when I got this email despite the fact that I no longer use the Cineplex app due to their absolutely stupid fee for booking online, which is now the subject of a lawsuit.

My advice: Even though this email is legitimate, If you get one of these emails, don’t click the link in the email. Instead you should just go to Cineplex.com and use the reset password link from there to ensure that you’re not a victim of some sort of phishing attempt by some threat actor who would leverage this to aid in this attack.

1 Comment »

Cineplex Asking Users To Change Their Passwords…. Why?

Posted in Commentary with tags , on February 24, 2017 by itnerd

That’s the question being asked by people who use Cineplex Connect as they got an e-mail this morning asking them to change their passwords. Here’s an example of such an e-mail posted to Twitter by someone who thinks this is an attempt at phishing:

https://twitter.com/xxx_mcmxcvi/status/835209958811648000

The problem is, that this e-mail is actually legit as confirmed by the Cineplex Twitter account:

So…. Why are they doing this? In my mind, it’s one of these three things:

  1. Cineplex Got pwned by hackers.
  2. Cineplex is watching other Canadian companies like Loblaw and Canadian Tire get pwned by hackers and is simply getting ahead of the curve in terms of trying to keep their users safe.
  3. This is related to the Cloudflare disclosure of leaked data. It is not clear if Cineplex is a Cloudflare customer, but the timing is interesting enough to make that a possiblity.

Whatever the reason, you should likely change your password. To change your password, you need to login to Cineplex’s website, click on the Security tab and follow password change instructions. In the meantime, we’ll have to guess which one of the three reasons that I stated is the truth. I’d like to think it’s the second one, but these days you never know.

1 Comment »