cyber Ransomware

Comcast

Oct 26, 2023 2 min read
Comcast

A BlackMarket on the dark web was offering about 590,000 Comcast email addresses and passwords for sale.

The seller presented a list of 112 accounts asking for $300 USD for 100,000 accounts, and the complete list of 590,000 accounts sells for $1,000 USD as evidence of the reliability of the Comcast data.

Approximately 200,000 out of the 590,000 records that were being sold on the illicit market were still active, according to Comcast, which was in possession of the list and had been examining the exposed information.

The systems of Comcast have not been penetrated, according to the company's security staff, and each subscriber who reports unusual behaviour on his account will be contacted individually to address the problem.

Source: https://securityaffairs.com/41875/cyber-crime/200000-comcast-login-darkweb.html

TPRM report: https://scoringcyber.rankiteo.com/company/comcast

"id": "com1740261023",
"linkid": "comcast",
"type": "Breach",
"date": "11/2015",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 590000,
                        'industry': 'Telecommunications',
                        'name': 'Comcast',
                        'type': 'Company'}],
 'attack_vector': 'Dark Web Marketplace',
 'data_breach': {'number_of_records_exposed': 590000,
                 'personally_identifiable_information': 'Email addresses',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Email addresses and passwords'},
 'description': 'A BlackMarket on the dark web was offering about 590,000 '
                'Comcast email addresses and passwords for sale. The seller '
                'presented a list of 112 accounts asking for $300 USD for '
                '100,000 accounts, and the complete list of 590,000 accounts '
                'sells for $1,000 USD as evidence of the reliability of the '
                'Comcast data. Approximately 200,000 out of the 590,000 '
                'records that were being sold on the illicit market were still '
                'active, according to Comcast, which was in possession of the '
                'list and had been examining the exposed information. The '
                'systems of Comcast have not been penetrated, according to the '
                "company's security staff, and each subscriber who reports "
                'unusual behaviour on his account will be contacted '
                'individually to address the problem.',
 'impact': {'data_compromised': 'Email addresses and passwords',
            'identity_theft_risk': 'High'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Email addresses and '
                                                    'passwords'},
 'motivation': 'Financial Gain',
 'response': {'remediation_measures': 'Contacting subscribers reporting '
                                      'unusual behavior'},
 'threat_actor': 'Unknown',
 'title': 'Comcast Email Credentials for Sale on Dark Web',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Vulnerability cyber

LangChain

public 2 min read
Cybersecurity researchers at Noma Security disclosed a critical vulnerability dubbed AgentSmith in LangChain‘s LangSmith platform, specifically affecting its public…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.