Infiniwiz's Tips for Security Amid Xfinity Data Breach

If you are a Comcast customer, you may have been notified of a data security issue where customers’ personal information may have been exposed or stolen. Bleeping Computer states that 35 million people were affected.

Infiniwiz would like to give you the details of what happened in this security incident.

What Happened With The Xfinity Data Breach

Xfinity stated that there was unauthorized access to their systems from October 16th to October 19th. The company disclosed a vulnerability within the cloud computing system ‘Citrix.’ All their clients, including Xfinity and other companies, were alerted to this flaw.

While Xfinity later stated that ‘Citrix’ patched the vulnerability, they later found out that malicious actors were able to intrude into Xfinity’s internal system

What customer information was involved?

Xfinity stated that the following information may have been stolen:

• First and last names
• Contact information
• The last four digits of the Social Security number
• Home addresses
• Secret questions/answers
• Date of birth

What is Xfinity currently doing to fix this issue?

The company states that they have involved federal law enforcement to investigate if any additional information was stolen. Additionally, Xfinity alerted customers to change their passwords and turn 2-factor Authentication on. The company advised “customers not to re-use passwords across multiple accounts” and recommended that customers change their passwords on those other accounts, as well.

While this incident has been quite alarming to many users, it is essential to note that cybersecurity threats happen constantly. Comcast states, however, that they have robust security mitigations that assist them in catching cybersecurity threats and mitigating them immediately. The company ended its announcement, stating, “Customers trust us to protect their information, and the company takes this responsibility seriously. We remain committed to investing in technology, protocols, and experts dedicated to helping protect our Customers” (Comcast).

Infiniwiz’s Tips for Comcast customers

• Stay updated on this recent update. Regularly check for official communications from Comcast to ensure you are aware of the investigation.
• Remain vigilant and cautious of phishing attempts. Malicious actors may use the stolen data to create convincing phishing emails or messages. Ensure that you verify the legitimacy of any emails you receive, especially those requesting sensitive information.
• As stated before, be sure to create a strong and unique password, enable two-factor Authentication, and be cautious about sharing personal information online.

While Xfinity addresses the issue and states that they have the proper security measures in place, we advise you to stay vigilant. Monitor your financial statements, consider credit monitoring services, and be alert of phishing attempts. Update your security software and follow cybersecurity best practices. Infiniwiz will keep you informed as the situation develops.