Security Breach at Xfinity Exposes Personal Data of Millions

A significant security breach at Xfinity, the internet provider owned by Comcast, has resulted in the exposure of personal data for nearly all of the company’s customers. The breach compromised sensitive information, including account usernames, passwords, and responses to security questions, affecting approximately 35.8 million people, as disclosed by Comcast in a filing with the attorney general’s office in Maine.

Comcast promptly notified affected customers of the security incident through both its website and email channels on Monday. The breach was attributed to a vulnerability in software from the cloud computing company Citrix, a provider for various companies globally. Although Citrix had patched the vulnerability in October, unauthorized users gained access to Xfinity’s internal systems between October 16 and October 19, leading to the exposure of customer data.

 Two-factor authentication to enhance account security

For impacted individuals, the compromised information included names, contact details, account usernames and passwords, birthdates, partial Social Security numbers, and answers to security questions. Comcast has taken immediate steps to address the situation by urging all Xfinity customers to reset their usernames and passwords. Additionally, the company encourages the use of two-factor authentication to enhance account security.

Under new federal rules enforced by the Securities Exchange Commission starting Monday, public companies are obligated to disclose any cybersecurity breaches that could impact their financial results within four days of identifying a material breach. This regulatory requirement aims to enhance transparency and ensure timely communication to affected parties.

guidance on the breach and preventative measuresXfinity emphasizes that all customers, regardless of whether their accounts were directly breached, must reset their credentials. Comcast, which boasts over 32 million broadband customers according to its latest earnings report, acknowledges that the breach likely impacted all Xfinity customers.

The security vulnerability, known as “Citrix Bleed,” has been previously associated with cyberattacks targeting various entities, including the Industrial and Commercial Bank of China’s New York arm and a Boeing subsidiary.

Xfinity hacked 2023: What to do after data breach linked to software vulnerability

To assist customers during this challenging time, Xfinity has set up a toll-free helpline reachable at (888) 799-2560. The helpline operates 24 hours a day, Monday through Friday, from 9 a.m. to 9 p.m. Eastern time. Further information, including guidance on the breach and preventative measures, is available on Xfinity’s official website at xfinity.com/dataincident.

In response to the breach, Comcast is advising customers against reusing passwords across multiple accounts and recommends changing passwords for other accounts using the same credentials. The incident underscores the ongoing challenges companies face in safeguarding sensitive information, emphasizing the need for robust cybersecurity measures to protect customer data in an increasingly interconnected digital landscape.

Curious to learn more? Explore our articles on: Mr. Business Magazine