AG Nessel Re-Issues Data Breach Alert Following Comcast, Xfinity Data Breach
LANSING – Attorney General Dana Nessel is alerting Michigan consumers to a massive data breach affecting customers of Comcast/Xfinity nationwide. Nessel wants those whose information may have been compromised in the recent Comcast/Xfinity data breach to know what steps they can take to protect their data from scammers and identity thieves. “I would advise all affected customers to change their passwords immediately, on their Xfinity accounts but also any other accounts for which they use the same or similar login credentials or security questions,” said Nessel. “My department’s website has tips for those who may be affected, and my consumer protection team stands ready to help any Michigan residents who might experience identity theft as a result of this breach.” Comcast, the parent company of Xfinity, disclosed on December 18th that personal information of Xfinity customers was maliciously accessed in October of this year. Comcast contends that hackers exploited a vulnerability in software provided by Citrix, one of their software providers, and gained access to usernames, passwords, and for some customers other information such as names, contact information, the last four digits of their social security numbers, birthdates, or security questions and answers. Comcast asserts over 35 million Xfinity customers were affected by the breach. Comcast says it is notifying customers via the Xfinity website, email, and by alerting news media. This week Xfinity began requiring customers to reset their passwords. Xfinity customers with questions are directed by the company to call 888-799-2560. Michigan law does not require companies to notify the Attorney General’s office of data breaches, and the number of affected Michigan consumers is unknown. The Department of Attorney General’s Data Breaches: What to do Next alert provides consumers with useful information about what kind of information can be accessed during a data breach. The U.S. Federal Trade Commission also has consumer guidance available for creating strong passwords and securing your accounts. You can protect yourself during a data breach by taking the following actions: Watch out for phishing emails; Strengthen or change your passwords; Do not retain unnecessary data or files; Use multifactor authentication on devices and accounts; and Review your credit report often. Take advantage of free weekly credit reports from each of the three main credit reporting agencies: Equifax, Experian, and TransUnion by contacting the Annual Credit Report website.To file a complaint with the Attorney General, or get additional information, contact: |