ETFOptimize | High-performance ETF-based Investment Strategies

Quantitative strategies, Wall Street-caliber research, and insightful market analysis since 1998.


ETFOptimize | HOME
Close Window

Comcast says Xfinity cybersecurity incident may have compromised customer data

Comcast said Monday a mid-October cybersecurity incident stemming from a Citrix software vulnerability may have involved certain Xfinity customer information getting taken.

Comcast said Monday a mid-October cybersecurity incident stemming from a Citrix software vulnerability may have involved certain Xfinity customer information getting taken.

The telecommunication company told Xfinity customers that usernames and hashed passwords were among the data "likely acquired" by the perpetrator of the "unauthorized access to its internal systems" via the vulnerability between Oct. 16-18. Hashed passwords are created with an algorithm that transforms a password "into a short string of different numbers and letters for security purposes," according to Comcast.

The names, contact information, last four digits of social security numbers, dates of birth and/or secret questions of some customers may also have been obtained, Comcast said.

In a Tuesday statement to FOX Business, the company said it "promptly patched and mitigated the vulnerability" in the Citrix software that many other firms also utilize. It did so shortly after Citrix’s initial disclosure about the issue on Oct. 10 and subsequent release of additional mitigation guidance on Oct. 23, according to a Comcast news release. 

NORTH FACE, SUPREME PARENT COMPANY SAYS ORDER FULFILLMENT IMPACTED BY CYBERSECURITY INCIDENT

"We are not aware of any customer data being leaked anywhere, nor of any attacks on our customers," the company said to FOX Business.

Impacted Xfinity user IDs may total nearly 36 million, a data breach notification that Comcast submitted to the Office of the Maine Attorney General indicated.

Comcast became aware of the breach, which it attributed to the Citrix vulnerability, after performing a "routine cybersecurity exercise" on Oct. 25. It "notified federal law enforcement and initiated an investigation into the nature and scope of the incident," according to the company press release.

23ANDME CONFIRMS HACKERS ACCESSED DATA OF 6.9 MILLION USERS 

Boeing, the Industrial & Commercial Bank of China and other entities have experienced incidents related to the same Citrix software vulnerability, according to reports. 

Comcast told FOX Business it "required our customers to reset their passwords and we strongly recommend that they enable two-factor or multi-factor authentication, as many Xfinity customers already do." In the notice to customers, it also suggested customers make password changes on other sites where they have used the same password as their Xfinity account.

"We take the responsibility to protect our customers very seriously and have our cybersecurity team monitoring 24x7," Comcast said in its statement.

Xfinity customers are receiving notification about the incident via email, the brand’s website and other avenues.

DISNEY TO BUY REMAINING THIRD OF HULU FROM COMCAST

In late October, Comcast reported it had seen nearly $90.32 billion in overall revenues in the first three quarters of the year. Its net income over that time frame was $11.95 billion.

Data & News supplied by www.cloudquote.io
Stock quotes supplied by Barchart
Quotes delayed at least 20 minutes.
By accessing this page, you agree to the following
Privacy Policy and Terms and Conditions.


 

IntelligentValue Home
Close Window

DISCLAIMER

All content herein is issued solely for informational purposes and is not to be construed as an offer to sell or the solicitation of an offer to buy, nor should it be interpreted as a recommendation to buy, hold or sell (short or otherwise) any security.  All opinions, analyses, and information included herein are based on sources believed to be reliable, but no representation or warranty of any kind, expressed or implied, is made including but not limited to any representation or warranty concerning accuracy, completeness, correctness, timeliness or appropriateness. We undertake no obligation to update such opinions, analysis or information. You should independently verify all information contained on this website. Some information is based on analysis of past performance or hypothetical performance results, which have inherent limitations. We make no representation that any particular equity or strategy will or is likely to achieve profits or losses similar to those shown. Shareholders, employees, writers, contractors, and affiliates associated with ETFOptimize.com may have ownership positions in the securities that are mentioned. If you are not sure if ETFs, algorithmic investing, or a particular investment is right for you, you are urged to consult with a Registered Investment Advisor (RIA). Neither this website nor anyone associated with producing its content are Registered Investment Advisors, and no attempt is made herein to substitute for personalized, professional investment advice. Neither ETFOptimize.com, Global Alpha Investments, Inc., nor its employees, service providers, associates, or affiliates are responsible for any investment losses you may incur as a result of using the information provided herein. Remember that past investment returns may not be indicative of future returns.

Copyright © 1998-2017 ETFOptimize.com, a publication of Optimized Investments, Inc. All rights reserved.