dangillmor, (edited )
@dangillmor@mastodon.social avatar

Two unaccountable corporations -- Comcast and Citrix -- were disgustingly negligent with their security, as @arstechnica's @dangoodin reports. As a result, 36 million American households have had personal information -- passwords, usernames, security questions and answers -- posted online by other crooks.

I say "unaccountable" because there will be no meaningful punishment for the corporate wrongdoers. (And likely none for the hackers.)

https://arstechnica.com/security/2023/12/hack-of-unpatched-comcast-servers-results-in-stolen-personal-data-including-passwords/

jochenwolters,
@jochenwolters@mastodon.social avatar

@dangillmor @arstechnica @dangoodin Let’s add “insincerity” to “unaccountability:”

According to Ars Technica, “Comcast is requiring Xfinity customers to reset their passwords […].”

When I tried to log into my account modify my password — and security questions, too — the site did force a password reset. There is no mention of any security breach, though. Only when you click “Learn more,” do you see an easy to miss mention of it at the top of the destination page.

Very lame.

Text-dense support page on the Xfinity website about how to reset your Xfinity password. The first paragraph reads, “Note: If you are looking for more information about the finity data security incident, visit xfinity.com/dataincident.” The typographical styling of the paragraph is identical to the other content on the page.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • kavyap
  • thenastyranch
  • ethstaker
  • osvaldo12
  • mdbf
  • DreamBathrooms
  • InstantRegret
  • magazineikmin
  • Youngstown
  • khanakhh
  • Durango
  • slotface
  • rosin
  • cubers
  • JUstTest
  • everett
  • cisconetworking
  • tacticalgear
  • ngwrru68w68
  • Leos
  • GTA5RPClips
  • normalnudes
  • modclub
  • tester
  • anitta
  • megavids
  • provamag3
  • lostlight
  • All magazines
    •