Xfinity Customer Data Compromised in Attack Exploiting CitrixBleed Vulnerability

Comcast's Xfinity is informing customers that their information has been compromised in a cyberattack that involved exploitation of the vulnerability known as CitrixBleed.
CitrixBleed, officially tracked as CVE-2023-4966, is a critical vulnerability affecting Citrix's Netscaler ADC and Gateway appliances.
Malicious actors can exploit the flaw to hijack existing sessions, which can give them access to the targeted organization's systems.
Patches were announced by Citrix on October 10, but the vulnerability had been exploited as a zero-day since August.
Mass exploitation of CitrixBleed was underway a few weeks after the patch was announced, and reports started emerging about its use in attacks aimed at major companies.
It discovered on October 25 during a routine cybersecurity exercise that CitrixBleed had been exploited against its systems, with hackers having access between October 16 and 19.
An investigation revealed on November 16 that information had likely been stolen by the attackers.
While the analysis is ongoing, Xfinity determined on December 6 that customer information such as usernames and hashed passwords have been compromised.
For some customers, information such as name, contact details, date of birth, last four digits of social security number, and security questions and answers may have also been stolen.
Xfinity is now notifying customers and requiring them to reset their passwords.
The company is also advising them to ensure that multi-factor authentication is enabled on their account.
The CitrixBleed vulnerability is believed to have been involved in attacks against many organizations around the world, including high-profile companies such as Toyota.


This Cyber News was published on www.securityweek.com. Publication date: Tue, 19 Dec 2023 12:13:04 +0000


Cyber News related to Xfinity Customer Data Compromised in Attack Exploiting CitrixBleed Vulnerability

Xfinity Customer Data Compromised in Attack Exploiting CitrixBleed Vulnerability - Comcast's Xfinity is informing customers that their information has been compromised in a cyberattack that involved exploitation of the vulnerability known as CitrixBleed. CitrixBleed, officially tracked as CVE-2023-4966, is a critical vulnerability ...
1 year ago Securityweek.com
Xfinity Customer Data Compromised in Attack Exploiting CitrixBleed Vulnerability - Comcast's Xfinity is informing customers that their information has been compromised in a cyberattack that involved exploitation of the vulnerability known as CitrixBleed. CitrixBleed, officially tracked as CVE-2023-4966, is a critical vulnerability ...
1 year ago Packetstormsecurity.com
Comcast Xfinity Breached via CitrixBleed; 35M Customers Affected - The now-infamous CitrixBleed vulnerability has claimed possibly its biggest kill yet: 35 million customers of Comcast Xfinity. Since at least August, attackers have been exploiting CVE-2023-4966, a 7.5 high-severity vulnerability affecting Citrix ...
1 year ago Darkreading.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
2 months ago Aws.amazon.com
Comcast Xfinity Reports Data Breach Exposing Info About 35M Customers - PRESS RELEASE. MARLTON, N.J., Dec. 19, 2023 /PRNewswire/ - Approximately 35 million consumers are being notified that their confidential information was compromised due to a vulnerability in software created by Citrix and used by Xfinity. The data ...
1 year ago Darkreading.com
Xfinity Data Breach Impacts 36 Million Individuals - The data breach disclosed recently by Comcast's Xfinity impacts nearly 36 million individuals, the company told US authorities. The incident was disclosed by the telecommunications and smart home solutions provider on December 18, when it admitted ...
1 year ago Securityweek.com
Xfinity Rocked with Data Breach Impacting 36 Million Users - LLC, operating under the brand name Xfinity, has suffered a massive data breach affecting 36 million users. Comcast-owned brand Xfinity has initiated the process of notifying its customers about a significant data breach impacting tens of millions of ...
1 year ago Hackread.com
Adobe Real-Time CDP: Personalized Customer Experience - Adobe Experience Cloud Products like Adobe Real-Time CDP are available to assist. A revolutionary solution called Adobe Real-Time Customer Data Platform was created to assist companies in realizing the whole value of their customer data. Adobe ...
11 months ago Hackread.com
Comcast's Xfinity Breached: Data of 36 Million Users Exposed - Citrix bugs caused a lot of problems throughout the year, and as we're closing down 2023, it seems it's not over. This time, Xfinity, Comcast's cable television and internet division has been the victim of a data breach caused by the Citrix bug. ...
1 year ago Heimdalsecurity.com
E-commerce Security: Protecting Customer Data - In today's digital landscape, ensuring the security of customer data in e-commerce is a crucial concern for businesses. Protecting e-commerce data security is a complex task that requires a comprehensive understanding of the challenges faced by ...
10 months ago Securityzap.com
Xfinity discloses data breach after recent Citrix server hack - Doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in October also stole customer-sensitive information from its systems. On October 25, roughly two weeks after Citrix released security updates to ...
1 year ago Bleepingcomputer.com
Review: Top 5 For Outsourced Customer Service Solutions UK and Abroad - For companies that have too many phone calls and emails to keep up, it is very common to outsource your customer services, either domestically in the UK or abroad to the likes of India or The Philippines. An outsourced customer service firm can ...
5 months ago Itsecurityguru.org
Comcast-Owned Telcom Business 'Xfinity' Suffers Data Breach - Comcast-owned Xfinity has suffered a major data breach, affecting more than 25 million of its customers. This intrusion not only demonstrates a risky and expanding practice among hackers, but it has also greatly increased the vulnerability of ...
11 months ago Cysecurity.news
The Rise of Digital Customer Experience - Digital customer experience is a hot topic these days. In all seriousness, digital customer experience is one of the most important differentiators for your business. At its core, DCX is about the customer journey-a guided path for your customers to ...
1 year ago Feedpress.me
36 million people affected by data breach at Xfinity - Cable TV and internet service provider Xfinity says a breach linked to a widespread vulnerability in Citrix technology exposed data of about nearly 36 million people in mid-October. The intrusion happened between October 16-19, after Citrix had ...
1 year ago Therecord.media
Millions of Xfinity customers' hashed passwords, info stolen The Register - Millions of Comcast Xfinity subscribers' personal data - including potentially their usernames, hashed passwords, contact details, and secret security question-answers - was likely stolen by one or more miscreants exploiting Citrix Bleed in October. ...
1 year ago Go.theregister.com
The Irrefutable Case for Customer-Native DSPM - The counterpoint to these awful statistics is the emergence of data security posture management, which involves the continuous assessment, monitoring, and enhancement of an organization's data security. While some DSPM providers advocate traditional ...
8 months ago Securityboulevard.com
Okta: Breach Affected All Customer Support Users - When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta said the intrusion allowed hackers to steal sensitive data from fewer than one percent of ...
1 year ago Krebsonsecurity.com
Christie disclosed a data breach after RansomHub attack - MUST READ. Christie disclosed a data breach after a RansomHub attack. OmniVision disclosed a data breach after the 2023 Cactus ransomware attack. City of Wichita disclosed a data breach after the recent ransomware attack. Australian Firstmac Limited ...
6 months ago Securityaffairs.com
9 Best DDoS Protection Service Providers for 2024 - eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most powerful defenses an organization can employ against distributed ...
1 year ago Esecurityplanet.com
Teens with "digital bazookas" are winning the ransomware war, researcher laments - What do Boeing, an Australian shipping company, the world's largest bank, and one of the world's biggest law firms have in common? All four have suffered cybersecurity breaches, most likely at the hands of teenage hackers, after failing to patch a ...
1 year ago Arstechnica.com
Attack Vector vs Attack Surface: The Subtle Difference - Cybersecurity discussions about "Attack vectors" and "Attack surfaces" sometimes use these two terms interchangeably. This article guides you through the distinctions between attack vectors and attack surfaces to help you better understand the two ...
1 year ago Trendmicro.com
Customer Success Stories - Below is a short summary of all the new 2023 financial services customer success stories. Also at Cisco conferences and events we often have customers present but unfortunately most of the time these presentations are not turned into formal customer ...
11 months ago Feedpress.me
CISA Warns of Compromised Microsoft Accounts - CISA issued a fresh CISA emergency directive in early April instructing U.S. federal agencies to mitigate risks stemming from the breach of numerous Microsoft corporate email accounts by the Russian APT29 hacking group. The directive is known as ...
8 months ago Securityboulevard.com
BlackCat claims attack on Fidelity National Financial The Register - Fortune 500 insurance biz Fidelity National Financial has confirmed that it has fallen victim to a "Cybersecurity incident." The services we provide related to title insurance, escrow and other title-related services, mortgage transaction services, ...
1 year ago Theregister.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)