Change your passwords

Comcast hushes about serious hack.

On February 6, NullCrew FTS hacked into at least 34 of Comcast’s servers.

It appears that Comcast, the largest internet service provider in the United States, uses Zimbra as an internal communications platform. NullCrew exploited an unpatched security vulnerability, CVE-2013-7091, to gain access to usernames, passwords and other sensitive details from Comcast’s environment.

Comcast customers have not been not told to reset their passwords. But they should.

Steps to change password:

1. 1. Go to https://customer.xfinity.com/users/me/update-password

1. 1. Sign in with your current email and password

1. 1. Comcast will ask you for your current password and for your new password

       

      Remember:  Password Requirements
      a) 8-16 characters
      b) Include at least one letterand include numbers or special characters like !”#$%&’()*+,-./:;<=>?@[\]^_`{|}~

      Must not contain
      your first name,
      last name, User ID or Username
      Do not include spaces

1.  Hit Save and you’re done.
   (You might be asked to re-enter the new password on your smartphone or other programs as well)