Explore the latest developments concerning $117.5M Comcast data.
$117.5M Comcast data breach settlement: Who qualifies and how to file a claim
WASHINGTON — Xfinity customers could be eligible for cash and identity theft monitoring after Comcast agreed to pay $117.5 million to settle a class action lawsuit stemming from a 2023 cyberattack that exposed the personal information of tens of millions of Xfinity customers, according to court documents.
The proposed settlement, pending approval in the U.S. District Court for the Eastern District of Pennsylvania, would resolve claims that Comcast failed to adequately protect customer data after hackers exploited a vulnerability in Citrix software between Oct. 16 and Oct. 19, 2023. The company disclosed the breach in December 2023.
The attack affected an estimated 35.8 million customers — more than the company's entire broadband subscriber base at the time — exposing usernames, hashed passwords, and in some cases the last four digits of Social Security numbers, contact information, and security questions and answers.
Food Processor Electric Meat Grinder 500W Food Chopper 2 Speed for Vegetable Kitchen Cutter Medium Super Chopping Grinding
36M Xfinity customers had their data exposed – here’s how to claim your payout
Back in 2023, hackers accessed the personal data of 36 million Xfinity customers. Comcast said at the time that the data exposed included names, contact details, and dates of birth. A class action lawsuit followed, and a $117.5 million settlement has now been reached …
On October 10, 2023, one of Xfinity’s software providers, Citrix, announced a vulnerability in one of its products used by Xfinity and thousands of other companies worldwide. At the time Citrix made this announcement, it released a patch to fix the vulnerability. Citrix issued additional mitigation guidance on October 23, 2023. We promptly patched and mitigated our systems.
However, we subsequently discovered that prior to mitigation, between October 16 and October 19, 2023, there was unauthorized access to some of our internal systems that we concluded was a result of this vulnerability. We notified federal law enforcement and conducted an investigation into the nature and scope of the incident. It was later determined that information was likely acquired [that] included usernames and hashed passwords. For some customers, other information was also included, such as names, contact information, last four digits of social security numbers, dates of birth and/or secret questions and answers.
For more detailed information, explore updates concerning $117.5M Comcast data.
0 Comments