Welcome to Comcast Help & Support Forums
Find solutions, share knowledge, and get answers from customers and experts

New to the Community? Start here.

5,625,820

members

8

online now

1,804,932

discussions

Back to Top

Comcast Data Breach

Posted by
Visitor
  • Congrats on Posting your first topic!

Message 1 of 9
1,661 Views

BEWARE! (I am getting fraudulent charges to accounts related to my Comcast email, and I was not notified of this breach by Comcast)

 

In November 2015, the US internet and cable TV provider Comcast suffered a data breach that exposed 590k customer email addresses and plain text passwords. A further 27k accounts appeared with home addresses with the entire data set being sold on underground forums.

Compromised data: Email addresses, Home addresses, Passwords

 

You can check if your email address was exposed the breach: https://haveibeenpwned.com/

8 REPLIES
Posted by
Regular Contributor

Message 2 of 9
1,591 Views

This should be a non-issue if you practiced prudent security precautions which include:

 

1. Use strong passwords and CHANGE THEM OFTEN.

2. NEVER depend on anyone, any company, any product or any ISP to protect your privacy and provide security alone. YOU are the first line of defence.

 



<--> U.S. Navy Vietnam Era veteran. You're welcome. <-->
Posted by
Frequent Visitor
Frequent Visitor

Message 3 of 9
1,449 Views

L1ngus,

 

While secure password practices are important, the most secure password is insufficient if the vendor or customer configures or operates their systems insecurely.   As we've seen so many instances of companies having password hashes leaked/stolen or having vulnerabilites that allow capturing the passwords and pins, one can't say it is a non-issue if only the customer would practice prudent security precautions.  (To be clear, I have no knowledge about this alleged data breach.  Specifically, I don't know where the alleged data is from (vendor, customer, ...), or even if it is legitimate.)

 

For any that aren't familiar with it, here is NIST's "Guide to Enterprise Password Management"

   http://csrc.nist.gov/publications/drafts/800-118/draft-sp800-118.pdf

Too much detail for most home users, but it does contain the essence of current guidelines regarding password management.  (Of course, information security is much more complex than just password management.)

 

Posted by
Security Expert

Message 4 of 9
1,442 Views

M_T,

I was going to read the info at your link - just to see what the document contained  but then I saw it was only a "draft" dated 2009?  Sorry, but I have better things to do than read a draft that is 7 years old.

 

You have anything more current to share?

A veteran - whether active duty, retired, national guard, or reserve - is someone who, at one point in his or her life, wrote a blank check made payable to The 'United States of America', for an amount of 'up to and including my life.'




Community Icon
I am not a Comcast employee, I am a paying customer just like you!
I am an XFINITY Forum Expert and I am here to help. For information on the program click here.
We ask that you post publicly so people with similar questions may benefit from the conversation.

Was your question answered? Mark it as an accepted solution!solution Icon
Community Icon
I am not a Comcast employee. I am a paying customer just like you!
I am an XFINITY Forum Expert and I am here to help.
We ask that you post publicly so people with similar questions may benefit.

Was your question answered? Mark it as an accepted solution!solution Icon
Community Icon
I am not a Comcast employee.

Was your question answered?
Mark it as a solution!solution Icon

Posted by
Regular Contributor

Message 5 of 9
1,409 Views

M_T - LOL! Did you even read my post Mr. Important? I doubt it. 

 

"NEVER depend on anyone, any company, any product or any ISP to protect your privacy and provide security alone. YOU are the first line of defence."



<--> U.S. Navy Vietnam Era veteran. You're welcome. <-->
Posted by
Visitor
  • Thank you contributor for your first reply to the community!
 Posting replies is the best way to get involved.

Message 6 of 9
359 Views
When I try to enter my credit card number the URL shows no sign of secure site
Posted by
Security Expert

Message 7 of 9
354 Views
THe OP was over a year ago. The website address posted may no longer be useful.


"Once I talked to the inmates of an insane asylum in Hartford. I have talked to idiots a thousand times, but only once to the insane..."
Mark Twain


Community Icon
I am not a Comcast employee, I am a paying customer just like you!
I am an XFINITY Forum Expert and I am here to help. For information on the program click here.
We ask that you post publicly so people with similar questions may benefit from the conversation.

Was your question answered? Mark it as an accepted solution!solution Icon
Community Icon
I am not a Comcast employee. I am a paying customer just like you!
I am an XFINITY Forum Expert and I am here to help.
We ask that you post publicly so people with similar questions may benefit.

Was your question answered? Mark it as an accepted solution!solution Icon
Community Icon
I am not a Comcast employee.

Was your question answered?
Mark it as a solution!solution Icon

Posted by
Visitor
  • Thank you contributor for your first reply to the community!
 Posting replies is the best way to get involved.

Message 8 of 9
351 Views
I didn't use that. I'm just trying to find something abt the websites security
Posted by
Frequent Visitor

Message 9 of 9
330 Views

Comast was breached, 

  • Comcast.net - 590,298 users were breached.

The reason hacking attempts are just now starting to happen, is because a known data for purchase site has obtained the hacked database and now people are using it.