Comcast Internet Customers: You Should Change Your Password

The Citizen's Guide to the Future
Feb. 10 2014 8:19 PM

Comcast Internet Customers: You Should Change Your Password

Comcast hasn't been forthcoming about warning customers to change their email account passwords.

Photo by Dave Winer on Flickr.

If the idea of Comcast email makes you roll your eyes ... OK, that's reasonable. But Comcast was hacked recently, their mail servers were compromised, and every Comcast Internet customer has an Xfinity email address. So for Comcast's 19.9 million Internet customers, this is important. It could be you.

Last week the hacking group NullCrew FTS hacked 34 (or possibly more) of Comcast's servers and then published details about how to infiltrate the company's mail servers on Pastebin. Comcast didn't acknowledge the situation until the Pastebin post was removed more than a day later.


In a statement to the broadband news site MultiChannel, a Comcast spokesperson said that:

We’re aware of the situation and are aggressively investigating it. We take our customers’ privacy and security very seriously and we currently have no evidence to suggest any personal customer information was obtained in this incident.

But once the NullCrew FTS vulnerability was live, users began experiencing problems as the affected mail servers struggled under the load of numerous attacks. ZDNet found examples of customers complaining about the situation in Comcast customer service forums. It seems unlikely that no customer data was compromised give that the whole Internet had access to the servers for more than 24 hours.

The situation is esepcially troubling given that NullCrew FTS had already discovered the overarching vulnerability, CVE-2013-7091, in December 2013, but Comcast never updated their system to patch the hole. Even if you don't use your Xfinity address for anything other than logging into your Comcast account, the only way to protect your data going forward is to change your password. Go do it.

Future Tense is a partnership of SlateNew America, and Arizona State University.

Lily Hay Newman is lead blogger for Future Tense.



Don’t Worry, Obama Isn’t Sending U.S. Troops to Fight ISIS

But the next president might. 

The Extraordinary Amicus Brief That Attempts to Explain the Wu-Tang Clan to the Supreme Court Justices

Amazon Is Officially a Gadget Company. Here Are Its Six New Devices.

The Human Need to Find Connections in Everything

It’s the source of creativity and delusions. It can harm us more than it helps us.

How Much Should You Loathe NFL Commissioner Roger Goodell?

Here are the facts.

Altered State

The Plight of the Pre-Legalization Marijuana Offender

What should happen to weed users and dealers busted before the stuff was legal?

Surprise! The Women Hired to Fix the NFL Think the NFL Is Just Great.

You Shouldn’t Spank Anyone but Your Consensual Sex Partner

Sept. 17 2014 5:10 PM The Most Awkward Scenario in Which a Man Can Hold a Door for a Woman
  News & Politics
Altered State
Sept. 17 2014 11:51 PM The Plight of the Pre-Legalization Marijuana Offender What should happen to weed users and dealers busted before the stuff was legal?
Business Insider
Sept. 17 2014 1:36 PM Nate Silver Versus Princeton Professor: Who Has the Right Models?
Sept. 17 2014 6:53 PM LGBTQ Luminaries Honored With MacArthur “Genius” Fellowships
  Double X
The XX Factor
Sept. 17 2014 6:14 PM Today in Gender Gaps: Biking
  Slate Plus
Slate Fare
Sept. 17 2014 9:37 AM Is Slate Too Liberal?  A members-only open thread.
Brow Beat
Sept. 17 2014 8:25 PM A New Song and Music Video From Angel Olsen, Indie’s Next Big Thing
Future Tense
Sept. 17 2014 9:00 PM Amazon Is Now a Gadget Company
  Health & Science
Medical Examiner
Sept. 17 2014 11:48 PM Spanking Is Great for Sex Which is why it’s grotesque for parenting.
Sports Nut
Sept. 17 2014 3:51 PM NFL Jerk Watch: Roger Goodell How much should you loathe the pro football commissioner?