December 19, 2023 at 05:51AM
Xfinity, a division of Comcast Cable Communications, revealed a security breach where attackers exploited a Citrix server vulnerability, compromising sensitive data of 35,879,455 customers. This includes usernames, hashed passwords, and potentially other personal details. Despite password reset requests, customers were left uncertain. Comcast asserts prompt patching and monitoring for customer protection.
Key takeaways from the meeting notes:
– Xfinity, operated by Comcast Cable Communications, acknowledged a data breach where customer-sensitive information was stolen by attackers who exploited a vulnerability in Citrix servers in October 2023.
– The breach affected 35,879,455 individuals, compromising usernames, hashed passwords, and potentially other personal details such as names, contact information, last four digits of social security numbers, dates of birth, and secret questions/answers.
– Xfinity proactively requested users to reset their passwords as a protective measure, though some customers received password reset requests without explanation.
– Past security incidents, including credential stuffing attacks on Xfinity accounts, indicate a history of security challenges for the company.
– Xfinity’s response includes patching the Citrix vulnerability, mandatory password resets for customers, and strong recommendation of enabling two-factor or multi-factor authentication.
– There has been no evidence of customer data being leaked or attacks on Xfinity customers, and the company’s operations remained unaffected. There was no ransom demand following the incident.
– Xfinity emphasized its commitment to customer protection and continuous monitoring by its cybersecurity team.