Comcast has confirmed a significant data breach affecting close to 36 million Xfinity customers, caused by the exploitation of the critical-rated security vulnerability known as “CitrixBleed.”
CitrixBleed, found in Citrix networking devices commonly used by large corporations, has been under mass-exploitation by hackers since late August. Despite Citrix releasing patches in early October, Comcast, along with other big names like Boeing and the Industrial and Commercial Bank of China, failed to implement these patches in time, leaving their systems vulnerable.
Hackers exploiting this vulnerability gained access to Comcast’s internal systems for several days in October. It was not until later that Comcast detected the malicious activity and realized the extent of the breach. The compromised data includes customer usernames and hashed passwords, along with personal information such as contact details, dates of birth, partial Social Security numbers, and secret questions and answers.
As a precaution, Xfinity is requiring customers to reset their passwords and recommends the use of two-factor or multi-factor authentication, which isn’t a default requirement for customer accounts. In any case, my data is probably leaked somewhere now. Thanks Xfinity.