I recently started using Letter boxed archive to track and review movies, and overall the platform seems great for movie lovers. However, since it requires creating an account and connecting with other users, I wanted to ask about possible security or privacy concerns.
I try to keep my devices protected and currently rely on Norton security tools, so I’m wondering if anyone here has looked into the safety of the Letterboxd platform.
A few questions I had:
Has anyone noticed phishing emails or suspicious links related to Letterboxd accounts?
Does Norton flag anything related to the site or its notifications?
Are there any recommended privacy settings I should enable when using movie-tracking platforms like this?
I know many social platforms can become targets for spam or fake links, so I want to make sure I’m using it safely.
Any advice or experiences would be appreciated. Thanks!
While Letterboxd is a popular platform for film enthusiasts, its social-centric design means most activity is public by default, which presents specific privacy and security considerations.
Privacy Concerns
Public Visibility: By default, your profile, film ratings, watchlists, and reviews are publicly visible to all users and searchable via external search engines like Google.
Lack of “Private” Accounts: Unlike some social platforms, Letterboxd does not currently offer a “private profile” mode. While you can hide your account from the general “People” page in Settings, anyone with your direct URL can still view your content.
Data Collection & Sharing: The platform collects identity, device, and service usage data. For non-subscribers, third-party companies may access device information to serve personalized advertisements.
Social Connections: Connecting third-party accounts (like X/Twitter or Facebook) grants Letterboxd read-only access to your friend lists to find other members, which may inadvertently link your film habits to your broader social identity.
Security Risks
History of Breaches: In February 2024, Letterboxd experienced a security breach where a compromised staff account allowed unauthorized access to data for less than 1% of members, including email addresses and private lists.
Account Targeting: There have been community reports of individual accounts being targeted by hackers to promote spam or “fix the bug” protests, often due to weak passwords or unpatched vulnerabilities.
Recommended Protective Measures Enable Two-Factor Authentication (2FA): This is the most effective way to prevent unauthorized access following the 2024 breach. Use Private Lists: While your profile is public, you can set specific lists to “Private” or “Shared with Friends Only” to keep certain watchlists or collections away from the general public. Manage Comment Permissions: To avoid harassment or spam, you can restrict who can comment on your reviews to only people you follow. Request “Unsearchable” Status: You can email Letterboxd staff to request that your profile be made unsearchable, which removes you from film member pages and general member directories.
================================
To secure your account and manage social interactions on Letterboxd, follow these steps to enable Two-Factor Authentication (2FA) and control who can comment on your reviews.
How to Enable 2FA
Letterboxd supports 2FA via authenticator apps (like Google Authenticator or Authy) to provide an extra layer of security beyond your password.
Open Settings:
Web: Click your username in the top-right and select Settings.
App: Tap your profile icon, then the gear icon for settings. Navigate to the Auth Tab: Locate the “Auth” or “Password and Security” section within the settings menu. Toggle 2FA: Find the “Two-Factor Authentication” switch and toggle it to ON. Connect Authenticator App:
A QR code will appear on your screen.
Open your chosen authenticator app on your phone and scan this code. Verify: Enter the 6-digit code generated by the app into the field on Letterboxd and click “Verify” or “Add” to complete the setup.
How to Adjust Comment Settings
You can restrict commenting to prevent unsolicited interactions or spam on your reviews and lists.
Access Profile Settings: Go to your Letterboxd Settings. Find Comment Controls:
Web: Scroll down to the “Replies” or “Comments” section near the bottom of the profile tab.
App: Go to “Settings” and then select “Advanced Settings”. Select Your Preference: Choose from the available options:
Anyone: Default; anyone with an account can comment.
Friends: Only users you follow can post replies.
You: Effectively closes comments to everyone except yourself. Save Changes: Ensure you click “Save Changes” at the bottom of the page to apply your new privacy rules.
================================== Note: AI sourced content may make mistakes