Xfinity’s Uncertain Data Breach: The Extent of the Damage

There was a data breach that potentially led to attackers getting customers’ usernames, hashed passwords, names, contact info, last four digits of social security numbers, dates of birth, and secret questions and answers. The company is still analyzing the attack and hasn’t disclosed the number of affected customers. Xfinity has informed law enforcement about the incident.

Citrix identified a vulnerability on October 10. Xfinity and other businesses were affected. Xfinity quickly patched the issue but later found suspicious activity in its systems during a routine cybersecurity check. Bad actors accessed the internal network between October 16 and 19.

Xfinity is informing customers about the incident through its website, email, and other means. It recommends customers to change their passwords, avoid using the same passwords for different accounts, and enable two-factor or multi-factor authentication. It also advises customers to change their login credentials for other accounts if they are the same as their Xfinity credentials.

Xfinity had a security incident in 2018 involving a bug in a Comcast website used to activate Xfinity routers, which exposed some customers’ home addresses, along with the name and password for their Wi-Fi networks.