Comcast Xfinity has confirmed the data breach 2023, affecting over 35 million customers after the threat actors exploited a known vulnerability in Citrix software, hackers accessed sensitive information between October 16th and 19th, 2023.
The Citrix Bleed flaw, patched in October, had been actively exploited since August, raising concerns about Xfinity’s delayed detection.
While the full extent of stolen data at Comcast Xfinity data breach 2023 remains under investigation, confirmed breaches includes 35.8 million compromised accounts: Usernames and hashed passwords are confirmed stolen, affecting every Xfinity customer and for some users, names, contact details, Social Security number fragments, birthdays, and security questions may also be exposed
Numerous customers report being blindsided by password reset prompts before the official breach announcement. This lack of communication fuels distrust and highlights the need for more proactive transparency.
Comcast Xfinity data breach 2023 was confirmed by the company with the following words on the notice:
Xfinity promptly patched and mitigated the Citrix vulnerability within its systems. However, during a routine cybersecurity exercise on October 25, Xfinity discovered suspicious activity and subsequently determined that between October 16 and October 19, 2023, there was unauthorized access to its internal systems that was concluded to be a result of this vulnerability. Xfinity notified federal law enforcement and initiated an investigation into the nature and scope of the incident. On November 16, Xfinity determined that information was likely acquired. After additional review of the affected systems and data, Xfinity concluded on December 6, 2023, that the customer information in scope included usernames and hashed passwords; for some customers, other information may also have been included, such as names, contact information, last four digits of social security numbers, dates of birth and/or secret questions and answers. However, the data analysis is continuing”.
Data Breach Timeline
- October 2023: Citrix releases patches to address a critical vulnerability known as “CitrixBleed.”
Between October 16th and 19th: Hackers exploit the vulnerability to gain unauthorized access to Xfinity’s systems - October 25th: Xfinity detects suspicious activity on its network
- November 16th: Investigation confirms data exfiltration affecting over 35 million customers
- December 6th: Xfinity concludes that stolen data includes usernames and hashed passwords. Additional information like names, contact details, and partial Social Security numbers may have also been compromised for some customers
