If you use Comcast email - please read

[ajg617]

This is a major hack of Comcast bypassing their 2FA - our credit check systems have been going nuts.

https://www.bleepingcomputer.com/new...ypass-attacks/

This is also recent as in Dec 24th was the first time we noticed any issues.

[Soundsailor]

This is a major hack of Comcast bypassing their 2FA - our credit check systems have been going nuts.

https://www.bleepingcomputer.com/new...ypass-attacks/

This is also recent as in Dec 24th was the first time we noticed any issues.

Thanks for the heads up, sounds nasty. While I have Comcast, nothing seems to be off with my account.

[ajg617]

Thanks for the heads up, sounds nasty. While I have Comcast, nothing seems to be off with my account.

Unfortunately, you likely won't know it until you try to login and can't. I monitor the dark web which is where my email and pword were found 6 different times since the 23rd. DW hadn't gotten new email for a couple of days. It is very disconcerting that they compromised 2FA and changed folks passwords redirecting the change to another email account. Makes you wonder if they can see any new password if you change it since they are already deep into the servers apparently.

[Redapple63]

Unfortunately, you likely won't know it until you try to login and can't. I monitor the dark web which is where my email and pword were found 6 different times since the 23rd. DW hadn't gotten new email for a couple of days. It is very disconcerting that they compromised 2FA and changed folks passwords redirecting the change to another email account. Makes you wonder if they can see any new password if you change it since they are already deep into the servers apparently.

That is very disconcerting for sure.

First order of business, change password immediately to a very complex password of minimum 16 characters with as many upper and lower case letters with as many accepted special characters as possible and DON’T use a pass phrase that has any meaning to you or someone you know.

Bill

On edit: Much thanks to @aig617 for the heads up. Most companies are NOT forthcoming when it comes to access breeches and they don’t come out with it until they have no other choice. In numerous instances there are reports of companies not coming clean with that disclosure until years after the incedent when the personal damage is already done.

Be careful out there!

[xrated]

This is a major hack of Comcast bypassing their 2FA - our credit check systems have been going nuts.

https://www.bleepingcomputer.com/new...ypass-attacks/

This is also recent as in Dec 24th was the first time we noticed any issues.

I'm not 100% sure what you are talking about here.....does it only pertain to someone who has Comcast email......or is it everyone that has a comcast acct?

[ajg617]

I'm not 100% sure what you are talking about here.....does it only pertain to someone who has Comcast email......or is it everyone that has a comcast acct?

My current understanding is that this impacts Comcast/Xfinity subscribers that have email accounts or the ability to establish email accounts by virtue of on-line access to their Xfinity services. For example, I have Comcast Internet services which provides x number of email addresses not all of which I use. The email addresses seem to be the target and are being used to compromise other on-line services such as crypto exchanges, cloud storage, etc. Comcast is so far very silent on this.

[xrated]

My current understanding is that this impacts Comcast/Xfinity subscribers that have email accounts or the ability to establish email accounts by virtue of on-line access to their Xfinity services. For example, I have Comcast Internet services which provides x number of email addresses not all of which I use. The email addresses seem to be the target and are being used to compromise other on-line services such as crypto exchanges, cloud storage, etc. Comcast is so far very silent on this.

Thanks for the clarification on that. No Comcast email services for me.....and I just logged into my Xfinity acct. and everything is OK......so far.

[Corky2]

It seems like the advancement of digital technology is resulting in the advancement of high tech crimes. I'm a stickler on protecting my privacy including digital privacy and will go to great lengths to accomplish this.