Comcast's customers details leaked on darkweb

News by Max Metzger

Comcast, the American media giant, has announced its intention to reset hundreds of thousands of accounts after 600,000 profile details, including passwords, were posted for sale online.

While only 200,000 of those details were confirmed to be still active, Comcast will still reset those credentials.

Over the weekend, the advertisement of the sale was posted to twitter, charging US$ 1,000 (£659) for the details

But how did so many of those details become essentially public? Comcast has denied that it was the victim of a data breach. ZDNet, a cyber-publication, argued  that the details may have been stolen from a third party involved with Comcast.

CSOonline, the publication that first reported the theft, spoke to Comcast which said that “customers impacted by the password resets will be dealt with on a case-by-case basis.”

“When asked, a Comcast representative confirmed that its security teams were certain that none of its systems or apps had been compromised.”

CSOonline went on to speculate that the data may be have been stolen via phishing scams, or have been taken “during one or more of the massive data breaches that have gone public over the last few years.”


Find this article useful?

Get more great articles like this in your inbox every lunchtime

Upcoming event 

Webcast: Understanding this year's biggest adversaries - and how to combat them 

Nation-state activity, versatile, slippery strategies and Big Game Hunting - the threats are real, dangerous and ever changing. 
Brought to you in partnership with Crowdstrike