Xfinity Data Breach: Hackers Exploit Software Vulnerability to Access Customer Information
In a recent announcement, Xfinity, the Comcast-owned telecommunications business, revealed that hackers gained unauthorized access to its internal systems by exploiting a vulnerability in software provided by Citrix. The breach occurred between October 16 and 19, but Xfinity only discovered the suspicious activity on October 25.
What Information Was Compromised?
After months of investigation, Xfinity determined that the hackers likely acquired usernames and hashed passwords of customers. Additionally, for some customers, the breach exposed the last four digits of their Social Security numbers, account security questions, birthdates, and contact information.
Despite the breach, Xfinity has stated that there is no evidence of customer data being leaked or any attacks on their customers. The company is actively working to analyze the breach further.
Steps Taken by Xfinity
Xfinity is taking immediate action to protect its customers. It is requiring all customers to reset their passwords and strongly recommending the use of two-factor or multifactor authentication for added security.
Extent of the Breach
A filing with Maine’s office of the attorney general revealed that nearly 35.9 million people were affected by this breach. However, Xfinity has not confirmed this specific number but clarified that the figure represents user IDs.
Software Provider Citrix and Other Affected Entities
Citrix, the software provider whose vulnerability was exploited in the breach, serves thousands of companies worldwide. The vulnerability, known as “Citrix Bleed,” has also been linked to other cyberattacks targeting entities such as the Industrial and Commercial Bank of China’s New York arm and a Boeing subsidiary.
Disclosure Requirements for Public Companies
Under new rules implemented by the Securities Exchange Commission (SEC), public companies are now required to disclose all cybersecurity breaches that could impact their financials within four days of determining the breach is material. As of now, there have been no SEC filings from Comcast regarding the recent data breach.
Philadelphia-based Comcast, the parent company of Xfinity, has over 32 million broadband customers, according to a recent earnings release.
Conclusion
The Xfinity data breach highlights the importance of robust cybersecurity measures for companies and the need for prompt disclosure of breaches to protect customers. Xfinity is actively addressing the issue by implementing password resets and recommending additional security measures to its customers.
