Xfinity is the latest in a long line of companies to fall victim to Citrix Bleed, parent company Comcast has confirmed, revealing that nearly 36 million customers' data may have been stolen.
The company issued a press release confirming that a breach had occurred and sensitive customer data had been stolen.
“During a routine cybersecurity exercise on October 25, read.
Exploiting a corrected error
Further investigation confirmed that the attackers succeeded in stealing people's sensitive data: “After additional review of the affected systems and data, Xfinity concluded on December 6, 2023 that the customer information in question included usernames and hashed passwords; for some customers, other information may also have been names, contact details, last four digits of social security numbers, dates of birth and/or secret questions and answers included.
The company's customers will now have to reset their passwords, Xfinity confirmed. It also said it “strongly recommends” users enable multi-factor authentication (MFA) to secure their accounts. “While Xfinity advises customers not to reuse passwords across multiple accounts, the company recommends that customers change passwords for other accounts for which they use the same username and password or security question,” the announcement concluded.
In late October this year, cloud giant Citrix confirmed earlier reports that a critical vulnerability in some of its products was being exploited in the wild.
It has released a patch for the flaw and urged users to apply it immediately to ensure their safety from hackers. The vulnerability in question is tracked as CVE-2023-4966. It has a severity score of 9.4 and affects NetScaler ADC and NetScaler Gateway.
A proof-of-concept called Citrix Bleed soon appeared on GitHub.