A new report from cybersecurity firm Kaspersky has revealed that over 7 million streaming service accounts were compromised in 2024. Affected platforms include major names such as Netflix, Disney+, Amazon Prime Video, Apple TV+, and Max.
The findings point to a growing risk for Gen Z users, who not only use these platforms for entertainment but also treat them as social and cultural touchpoints.
According to Kaspersky’s Digital Footprint Intelligence team, the compromised credentials were not stolen directly from the streaming services but were harvested through broader malware campaigns targeting infected devices.
These threats typically stem from unofficial downloads, pirated content, browser extensions, or compromised apps that covertly gather login details, session data, and other personal information.
In 2024 alone, Kaspersky identified 7,035,236 leaked credentials linked to major streaming platforms.
Netflix was the most affected, with 5.6 million compromised accounts, primarily in Brazil, Mexico, and India. Disney+ saw over 680,000 exposed accounts, especially in Brazil, Mexico, and Germany. Amazon Prime Video was less impacted but still recorded 1,607 compromised accounts, mostly in Mexico, Brazil, and France.
Once malware infects a device, the threat extends beyond streaming platforms. Attackers can extract cookies, login credentials, and even banking details, which are then sold or leaked on underground forums.
In some cases, cybercriminals distribute stolen data freely to build credibility. Reusing the same password across multiple services can lead to widespread digital intrusion, identity theft, and financial fraud.
To address these risks, Kaspersky has launched “Case 404” — an interactive game designed to educate Gen Z users on cybersecurity. Players take on the role of AI-powered detectives, solving realistic online crime scenarios. Upon completion, users receive a discount on Kaspersky Premium, turning education into actionable protection.
Polina Tretyak, Digital Footprint Analyst at Kaspersky, explains that Gen Z’s emotional connection to streaming can create security blind spots. Malware hidden in unofficial downloads or third-party tools can silently collect and expose personal data.
Protecting streaming accounts today requires more than strong passwords — it also means securing devices, avoiding suspicious downloads, and being vigilant about online behaviour.
To help users stay safe, Kaspersky recommends using legitimate, paid streaming services, downloading apps only from official sources, and avoiding suspicious file types such as .exe or .msi.
It’s also critical to verify website authenticity before entering any personal information and to regularly update passwords for compromised accounts. Combined with security solutions like Kaspersky Premium and Kaspersky VPN, these practices can help protect personal data and reduce the risk of credential theft in an increasingly connected digital landscape.





