Comcast-linked Xfinity hack exposed data of 36 mn people; Know how to create strong passwords, stay safe

tech.hindustantimes.com:

In October, Comcast Cable Communications, the American internet service provider that operates as Xfinity, got hit by a massive hack. Software used by Xfinity proved to be the door through which malicious activity was carried out. Although the vulnerability was fixed by Citrix in the same month, it has now been revealed that the internal data of the company, which included customer records including names, passwords, as well as a part of their social security numbers, was accessed during the intrusion.

In a filing at the attorney general's office in Maine, Comcast said that over 35.8 million people have been affected by the external system breach which occurred between October 16 and October 19. However, it wasn't until November 16 that the company discovered that additional data might have been acquired by the threat actors.

Xfinity has also issued a notice to its customers. It states, “ After additional review of the affected systems and data, Xfinity concluded on December 6, 2023, that the customer information in scope included usernames and hashed passwords; for some customers, other information may also have been included, such as names, contact information, last four digits of social security numbers, dates of birth and/or secret questions and answers. However, the data analysis is continuing.”

The internet service provider has also issued on the next steps that customers should take to keep their data secure. Customers are now required to reset their passwords.  Additionally, Xfinity says that customers should enable two-factor or multi-factor authentication to secure their Xfinity account.

In light of this latest cybersecurity breach, check out 5 tips to create strong passwords and stay safe.

ALWAYS keep a different