Xfinity Informs Customers of Data Breach Caused by Software Vulnerability

0
55
Xfinity Informs Customers of Data Breach Caused by Software Vulnerability
Xfinity Informs Customers of Data Breach Caused by Software Vulnerability

Hackers grabbed access to Xfinity customers’ personal information by exploiting a vulnerability in the company’s software.

Hackers gained access to Xfinity customers’ personal information by exploiting a vulnerability in the company’s software, the Comcast-owned telecommunications provider disclosed this week.

Xfinity informed consumers on Monday that unauthorized access to internal systems occurred as a result of this vulnerability, which was previously revealed by software supplier Citrix, between Oct. 16 and 19.

Xfinity found the “suspicious activity” on Oct. 25 and determined that information was “likely acquired” in the months that followed. On December 6, the business concluded that the material included usernames and hashed passwords, as well as the last four digits of Social Security numbers, account security questions, birthdates, and contact information for some users.

The investigation into the breach is still ongoing, but Xfinity is “not aware of any customer data being leaked anywhere, nor of any attacks on our customers,” according to a statement.

Customers are also required to reset their passwords, with two-factor or multifactor authentication strongly recommended.

According to a filing with Maine’s attorney general’s office, the hack affected almost 35.9 million people. The company declined to confirm a particular amount on Tuesday but stressed that the figure in the filing represents user IDs.

According to a recent financial report, Philadelphia-based Comcast has more than 32 million broadband customers.

Citrix, in addition to Xfinity, provides software to thousands of businesses worldwide. The previously disclosed vulnerability, called “Citrix Bleed,” has also been linked to hacks against the Industrial and Commercial Bank of China’s New York branch and a Boeing affiliate, among other targets.

Also readQuantum AI: Bridging the Gap Between Computing and AI

Do FollowCIO News LinkedIn Account | CIO News Facebook | CIO News Youtube | CIO News Twitter 

About us:

CIO News, a proprietary of Mercadeo, produces award-winning content and resources for IT leaders across any industry through print articles and recorded video interviews on topics in the technology sector such as Digital Transformation, Artificial Intelligence (AI), Machine Learning (ML), Cloud, Robotics, Cyber-security, Data, Analytics, SOC, SASE, among other technology topics.