Comcast keeps customers in dark after hack attack
Largest cable company in the US, Comcast was reportedly hacked recently, but the company downplayed the dangers and kept customers in the dark.
On February 5, hacking group, NullCrew FTS, exploited Comcast's 34 mail servers, including an unpatched vulnerability in Zimbra server software, and made off with Lightweight Directory Access Protocol passwords and MySQL credentials.
According to PC World, the hackers posted details of the exploit on Pastebin, along with a list of the company's mail servers and kept them public for 24 hours, while Comcast forum users reported slowness, crashing and reliability issues.
It was only after those 24-hours that Comcast issue a response, saying that it was "aggressively investigating" the situation and that it took customers' privacy and security very seriously.
The company further said that currently there was no evidence to suggest any personal customer information was obtained in the hack-attack.
The report said that in that time frame, hackers could have used the exploit and helped themselves to users' data.
(Posted on 11-02-2014)