According to CBS News and other outlets on Dec 19th, Comcast owned Xfinity was subject to a data breach known as “Citrix Bleed”
A filing in Maine’s attorney general’s office by Comcast claims that between October 16 and October 19 of this year, 35.8 million people we’re vulnerable to a data breach that revealed their customer data. This data included their names, contact information, account usernames and passwords, birthdates, parts of their social security numbers and answers to their security questions. The media and technology company notified their customers on Monday via email, with a notice on their website and media coverage.
This incident traces back to a vulnerability in Citrix software, which was announced on October 10, 2023. This software was not only used by Xfinity but also by thousands of other companies globally. Following Citrix’s issue of additional mitigation guidance on October 23, Xfinity promptly patched this vulnerability within its systems. However, during a routine cybersecurity check on October 25, Xfinity discovered suspicious activities. It was later determined that there had been unauthorized access to their internal systems between October 16 and October 19, 2023, as a result of this vulnerability.
In response to this discovery, Xfinity notified federal law enforcement and initiated a thorough investigation into the breach. By November 16, it became apparent that customer information had likely been acquired. Further analysis, completed by December 6, revealed that the data compromised included usernames and hashed passwords. Additionally, for some customers, other sensitive information such as names, contact information, the last four digits of social security numbers, dates of birth, and answers to security questions may have been exposed. The company is continuing its analysis of the affected data to understand the full scope of the breach.
As a precautionary measure, Xfinity has required all its customers to reset their passwords. EVERNET strongly recommends the use of two-factor or multi-factor authentication for all accounts, a security step that can help protect your accounts even in the event of a data breach. Also the practice of reusing passwords can leave more of your accounts vulnerable to attack, at EVERNET we can help implement a corporate password manager that can help store and create unique passwords as well as multi-factor authentication.
For customers seeking further information or assistance, Xfinity has established a dedicated call center that operates 24/7. The company remains steadfast in its commitment to protecting customer information, acknowledging the trust that customers have placed in them. Xfinity assures continued investment in advanced technology, effective protocols, and expert personnel dedicated to enhancing data security and protecting against such incidents in the future. If your business was affected by this Xfinity Citrix Bleed data breach, speak to one of our IT & Cybersecurity experts by clicking here.
The Xfinity data breach serves as a reminder of the ever-present need for robust cybersecurity measures and the importance of quick, transparent, and effective responses in the event of such incidents.
Eric is a Business IT cybersecurity advisor, consultant, manager, integrator, and protector who founded EVERNET in 2007. Eric co-hosts a podcast called “Finance and Technology Insights by Brian & Eric” on YouTube. Eric is a regular contributor to the EVERNET blog, writing about the latest technology news and providing his expertise in cyber security prevention and management. Meet with our CEO and say goodbye to one-size-fits-all IT support and cybersecurity.