More than 35 Million Xfinity Customers Affected in Major Data Breach

Warning for Xfinity customers as huge data leak leads to massive amount of information being compromised.

Comcast Cable Communications – the legal name behind the Xfinity brand which is primarily a telecommunications service provider – disclosed a data breach had taken place on Monday and started to inform their affected customers.

To finish off what has been a record-breaking year for hacks, on Monday 18 December a breach notice disclosed the scale of the intrusion on the government website for Maine.

The company is still investigating the data breach which they believe took place in mid-November and they know that the hackers gained access by exploiting a third party vulnerability known as Citrix Bleed.

What is the “Citrix Bleed”?

The ordeal started in early October when cloud computing company Citrix, who are a third-party provider to Xfinity and many other companies, discovered the flaw.

Citrix Bleed – tracked as CVE-2023-4966 – was found to have been exploited by malicious actors since at least late August 2023, according to cyber-security company Mandiant.

On October 10 Citrix urged all of its customers to install the software update to patch the vulnerability as soon as possible and in late October gave their customers further mitigation guidance.

 

About Tech.co Video Thumbnail Showing Lead Writer Conor Cawley Smiling Next to Tech.co LogoThis just in! View
the top business tech deals for 2024 👨‍💻
See the list button

Following investigations into the Citrix Bleed, Xfinity discovered the “unauthorized access” to its own internal systems via the same vulnerability and notified federal authorities on November 16.

The telco company said it had “promptly patched and mitigated the vulnerability,” in a statement for the media. The company investigated the infiltration in more depth and disclosed more details to its customers on December 18.

What Customer Data was Stolen?

The company has disclosed that customer data which was stolen were customer usernames and hashed passwords. In addition, for some customers other information may have also been stolen such as names, contact information, last four digits of social security numbers, dates of birth and/or secret questions and answers. Around 35 million customers are said to have been affected.

All Xfinity customers should be aware that when they next login to their Xfinity account they will have to reset their passwords regardless of whether their data was stolen or not as an extra safety precaution.

The Xfinity statement read “we are not aware of any customer data being leaked anywhere, nor of any attacks on our customers,” but insist they are monitoring the ongoing situation 24/7.

The company strongly advises their customers to use two-factor or multi-factor authentication for added security. Customers with questions can contact Xfinity’s dedicated call center at 888-799-2560 toll-free at any time or review their data security incident notice for more guidance.

Did you find this article helpful? Click on one of the following buttons
We're so happy you liked! Get more delivered to your inbox just like it.

We're sorry this article didn't help you today – we welcome feedback, so if there's any way you feel we could improve our content, please email us at contact@tech.co

Written by:
Abby Ward is a contributor at Tech.co and freelance search engine marketing (SEM) specialist. Since graduating from Kingston University London in 2015 with Bachelor's degree in Journalism with French, she has worked in many areas of digital marketing including website management, SEO, and paid media. Her specialist topics span her professional and personal interests in search social media, ad-tech, education, food & beverage, hospitality, and business.
Explore More See all news
Back to top
close Thinking about your online privacy? NordVPN is Tech.co's top-rated VPN service See Deals