The Comcast data breach has exposed the personal information of over 237,700 customers, including names, addresses, social security numbers, and birthdates. The breach originated from a security incident at Financial Business and Consumer Solutions (FBCS), a debt collection agency previously utilized by Comcast, according to a report filed with the state of Maine.

FBCS disclosed that the breach occurred in February 2024, compromising the sensitive information of more than 4.2 million individuals. In July, FBCS notified Comcast that their customer data had also been affected, revealing that an “unauthorized party” had downloaded information from FBCS’s systems and encrypted portions of its network as part of a ransomware attack.

Comcast clarified that the data exposed in this breach dates back to around 2021, despite having ended its business relationship with FBCS in 2020. Additionally, Truist Bank reported that some of its customers were also impacted by the FBCS breach. In response, Comcast is offering identity theft protection and credit monitoring services to those affected by the incident.

What type of sensitive data was exposed in the Comcast breach?

The data breach involving Comcast exposed highly sensitive personal information, including customer names, addresses, social security numbers, and birthdates. This type of data is particularly concerning because it opens the door to identity theft and fraud, making it crucial for affected individuals to take immediate protective measures. With over 237,700 Comcast customers affected, the breach has raised serious concerns about the security of consumer data and the long-term impact on privacy.

How did the breach at FBCS impact Comcast customers?

The security breach at Financial Business and Consumer Solutions (FBCS), a debt collection agency Comcast used previously, directly impacted over 237,700 Comcast customers. As part of the breach, an unauthorized party accessed and downloaded sensitive information from FBCS’s systems, potentially putting customers at risk of identity theft. While Comcast had ceased its partnership with FBCS in 2020, customer data dating back to 2021 remained vulnerable and was part of the compromised information. In response, Comcast is offering identity theft protection and credit monitoring services to all affected individuals, aiming to mitigate the risks stemming from the breach.

When did FBCS inform Comcast about the data breach?

Although the breach occurred in February 2024, FBCS did not notify Comcast until July 2024, a significant delay in reporting the incident. This delay is critical, as it left Comcast customers’ sensitive information exposed for several months before any protective measures could be put in place. The late notification also raises questions about FBCS’s internal processes for detecting and reporting security breaches, as well as how quickly affected parties can respond to potential harm.

What caused the FBCS security breach?

The breach at FBCS was the result of a ransomware attack. During the incident, an unauthorized party managed to infiltrate FBCS’s systems, where they downloaded data and encrypted parts of the system. This type of attack not only involves the theft of sensitive data but also disrupts the victim’s operations by making critical information inaccessible unless a ransom is paid. The attack highlights the growing threat posed by ransomware to organizations that store large amounts of personal data, as well as the need for robust cybersecurity measures to prevent such incidents.

How long has the exposed Comcast data been stored with FBCS?

Although Comcast stopped using FBCS’s services in 2020, the data that was exposed during the breach dates from around 2021. This indicates that the sensitive information of Comcast customers was still in FBCS’s possession, despite the end of their business relationship. The retention of this data beyond the termination of services raises questions about data management practices and the responsibilities of companies to safeguard customer information even after their partnership has ended.

Both Comcast and its customers are now facing the fallout of these vulnerabilities.

Image credits: Kerem Gülen/Midjourney

Comcast Xfinity data breach 2023 has been confirmed, affecting over 35 million customers. Exploiting a known vulnerability in Citrix software, hackers accessed sensitive information between October 16th and 19th, 2023.

The Citrix Bleed flaw, patched in October, had been actively exploited since August, raising concerns about Xfinity’s delayed detection.

While the full extent of stolen data at Comcast Xfinity data breach 2023 remains under investigation, confirmed breaches include:

• 35.8 million compromised accounts: Usernames and hashed passwords are confirmed stolen, affecting every Xfinity customer
• Additional data at risk: For some users, names, contact details, Social Security number fragments, birthdays, and security questions may also be exposed

Adding to the anxiety, many customers report being blindsided by password reset prompts before the official breach announcement. This lack of communication fuels distrust and highlights the need for more proactive transparency.

Comcast Xfinity data breach 2023 confirmed by the officials

Comcast Xfinity data breach 2023 was confirmed by the company with the following words on the notice:

”On October 10, 2023, Citrix announced a vulnerability in software used by Xfinity and thousands of other companies worldwide. Citrix issued additional mitigation guidance on October 23, 2023. Xfinity promptly patched and mitigated the Citrix vulnerability within its systems. However, during a routine cybersecurity exercise on October 25, Xfinity discovered suspicious activity and subsequently determined that between October 16 and October 19, 2023, there was unauthorized access to its internal systems that was concluded to be a result of this vulnerability.

Xfinity notified federal law enforcement and initiated an investigation into the nature and scope of the incident. On November 16, Xfinity determined that information was likely acquired. After additional review of the affected systems and data, Xfinity concluded on December 6, 2023, that the customer information in scope included usernames and hashed passwords; for some customers, other information may also have been included, such as names, contact information, last four digits of social security numbers, dates of birth and/or secret questions and answers. However, the data analysis is continuing”.

Are you among the 14.7 million affected by the Mr. Cooper data breach?

The timeline of a data breach is as follows:

• October 2023: Citrix releases patches to address a critical vulnerability known as “CitrixBleed.”
  Between October 16th and 19th: Hackers exploit the vulnerability to gain unauthorized access to Xfinity’s systems
• October 25th: Xfinity detects suspicious activity on its network
• November 16th: Investigation confirms data exfiltration affecting over 35 million customers
• December 6th: Xfinity concludes that stolen data includes usernames and hashed passwords. Additional information like names, contact details, and partial Social Security numbers may have also been compromised for some customers

This isn’t Xfinity’s first rodeo. Last year, the company faced criticism for credential stuffing attacks that bypassed two-factor authentication, compromising accounts and fueling cryptocurrency exchange fraud.

The Comcast Xfinity data breach 2023 raises several critical questions:

• Did Xfinity prioritize timely patching of the Citrix vulnerability?
• What specific security measures failed to prevent the breach?
• How will Xfinity regain customer trust and prevent future incidents?

While Xfinity claims no evidence of leaked data or ransom demands, the potential for harm remains enormous. Millions now face increased risks of phishing scams, identity theft, and financial fraud.

What if you are affected by Comcast Xfinity data breach 2023?

If you’re an Xfinity customer, the 2023 data breach is a cause for concern, but there are steps you can take to minimize the potential damage:

• Change your Xfinity password: Even if you didn’t receive a reset prompt, go ahead and update your password using a strong, unique one that you don’t use for any other accounts
• Enable two-factor authentication (2FA): This adds an extra layer of security by requiring a second factor, like a code from your phone, to log in
• Be vigilant about phishing scams: Hackers may try to take advantage of the breach by sending emails or texts pretending to be Xfinity asking for your information. Never click on any links or provide personal information unless you’re sure it’s legitimate
• Monitor your accounts: Keep an eye on your bank statements, credit reports, and any other accounts linked to your Xfinity information for any suspicious activity

Featured image credit: Fili Santillán/Unsplash.