Xfinity discloses data breach after recent Citrix server hack (www.bleepingcomputer.com)

submitted 9 months ago by LollerCorleone@kbin.social to c/cybersecurity@infosec.pub

4 comments fedilink hide all child comments

Comcast Cable Communications, doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in October also stole customer-sensitive information from its systems.

top 4 comments

sorted by: hot top controversial new old

[-] solariplex@slrpnk.net 11 points 9 months ago

They were revealed to brag to ad sellers about having access to tons of sensitive information about its customers, by spying on e.g. ambient conversations through smartphones and smart TVs, right?

Or was it them who requested customers install an xfinity root certificate on their phone, without telling it would enable xfinity to man-in-the-middle all their internet activity?

Funny, it's almost like fucking around with peoples' privacy and security inevitably leads to finding out

[-] GlitzyArmrest@lemmy.world 6 points 9 months ago

Unfortunately, Comcast will get a slap on the wrist and the customers will be the ones finding out.

[-] MSgtRedFox@infosec.pub 3 points 9 months ago

I just heard about the root certificate thing from security now podcast.

It blows my mind there were trying to do that level of interception.

Exceptionally bad since most normal people have no concept of the gravity of installing a root cert.

[-] solariplex@slrpnk.net 2 points 9 months ago

Hello, fellow SN enjoyer! That's where I first heard it as well

this post was submitted on 19 Dec 2023

30 points (96.9% liked)

cybersecurity

3157 readers

2 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 1 year ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub