Signage for Xfinity, the cable division of Comcast, is displayed in Philadelphia, July 15, 2015. Hackers accessed Xfinity customers’ personal information by exploiting a vulnerability in software used by the company, the Comcast-owned telecommunications business announced this week. In a Monday, Dec. 18, 2023, notice to customers, Xfinity said there was unauthorized access to internal systems as a result of this vulnerability — which was previously announced by software provider Citrix — between Oct. 16 and 19. (AP Photo/Matt Rourke, File)
Hackers accessed Xfinity customers' personal information by exploiting a vulnerability in software used by the company, the Comcast-owned telecommunications business announced this week.
In a Monday notice to customers, Xfinity said there was unauthorized access to internal systems as a result of this vulnerability — which was previously announced by software provider Citrix — between Oct. 16 and 19.
Xfinity discovered the “suspicious activity” on Oct. 25, and in the following months determined that information was “likely acquired.” On Dec. 6, the company concluded that information included usernames and hashed passwords — and, for some customers, the last four digits of Social Security numbers, account security questions, birthdates and contact information.
Analysis of the breach is still continuing but to date, Xfinity is “not aware of any customer data being leaked anywhere, nor of any attacks on our customers,” the company said in a statement sent to The Associated Press Tuesday.
Xfinity is also requiring customers to reset their passwords, while strongly recommending two-factor or multifactor authentication.
A filing with Maine's office of the attorney general disclosed that nearly 35.9 million people were affected by this breach. The company declined to confirm a specific number Tuesday, but noted the filing's figure represents user IDs.
Philadelphia-based Comcast has more than 32 million broadband customers, according a recent earnings release.
In addition to Xfinity, Citrix provides software to thousands of companies around the world. The previously-announced vulnerability, dubbed “Citrix Bleed,” has also been linked to hacks targeting the Industrial and Commercial Bank of China's New York arm and a Boeing subsidiary, among others.
Under new rules that went into effect Monday, the Securities Exchange Commission now requires public companies to disclose all cybersecurity breaches that could affect their bottom lines — within four days of determining a breach is material. As of Tuesday, there were no SEC filings from Comcast about the recent data breach and the company did not immediately address it.
Sinead O’Sullivan breaks down Taylor Swift’s genius marketing for The Life of a Showgirl, which just set the record for most albums sold in a single week.
Markets are emerging from a turbulent Q3. Horizon’s Mike Dickson shares insights on interest rates, small caps, and where investors should look in Q4 and beyond
Bambu Ventures's Kyle Pretsch dives into Lemonaid’s $10M buyout, down from 23andMe’s $400M price tag, and what’s next after Chrome Co.’s dramatic pivot.
Former Cisco Systems CEO John Chambers learned all about technology’s volatile highs and lows as a veteran of the internet’s early boom days during the late 1990s and the ensuing meltdown that followed the mania. And now he is seeing potential signs of the cycle repeating with another transformative technology in artificial intelligence. Chambers is trying take some of the lessons he learned while riding a wave that turned Cisco into the world's most valuable company in 2000 before a crash hammered its stock price and apply them as an investor in AI startups. He recently discussed AI's promise and perils during an interview with The Associated Press.
Grove Collaborative’s CEO shares how the company is reinventing everyday goods with sustainability at the core and working toward a plastic-free future.
Atlanta Mayor Andre Dickens shares plans for affordable housing, community-led growth, and why private and public grocery stores could be key to food equity.
Tesla reported a surprise increase in sales in the third quarter as the electric car maker likely benefited from a rush by consumers to take advantage of a $7,500 credit before it expired on Sept. 30. The company reported Thursday that sales in the three months through September rose 7% compared to the same period a year ago. The gain follows two quarters of steep declines as people turned off by CEO Elon Musk’s foray into right-wing politics avoided buying his company’s cars and even protested at some dealerships. Sales rose to 497,099 vehicles, compared with 462,890 in the same period last year.
