Comcast says 230,000 customers affected by debt collection data breach

Comcast is warning that hackers stole the non-public information of greater than 230,000 clients throughout a ransomware assault on a third-party debt collector, based on a courtroom submitting. The dangerous actors focused a Pennsylvania-based debt assortment company referred to as Monetary Enterprise and Client Options (FBCS.)

The assault occurred again in February, however Comcast claims that FBCS initially mentioned that the incident didn’t contain any buyer information. FBCS modified its tune by July, when it notified Comcast that buyer data had been compromised, based on reporting by TechCrunch.

All informed, 237,703 subscribers had been impacted by the breach. The attackers had been thorough, scooping up names, addresses, Social Safety numbers, dates of start, Comcast account numbers and ID numbers. Comcast says the stolen information belongs to clients who signed up with the corporate “round 2021.” It additionally says it has stopped utilizing FBCS for the needs of debt assortment.

“From February 14 and February 26, 2024, an unauthorized occasion gained entry to FBCS’s laptop community and a few of its computer systems,” the submitting states. “Throughout this time, the unauthorized occasion downloaded information from FBCS techniques and encrypted some techniques as a part of a ransomware assault.”

No group has stepped ahead to assert credit score for the incident. FBCS has solely referred to the attacker as an “unauthorized actor.” The debt assortment company was hit exhausting by this assault, with Comcast clients being only one group of victims. The corporate says greater than 4 million folks had been impacted and that the cybercriminals accessed medical claims and medical insurance data, along with customary identification information.

To that finish, medical debt-purchasing firm CF Medical confirmed that 600,000 of its clients had been concerned within the breach. Truist Financial institution additionally confirmed it was affected by the assault.

It’s notable that this incident primarily impacts debtors, opening them as much as potential scams. Chris Hauk, shopper privateness advocate at Pixel Privateness, informed Engadget that “the dangerous actors that get their paws on this data could use it to pose as debt reduction businesses, which many flip to as a means out of their scenario, that means most of the concerned debtors could also be defrauded out of huge sums of cash, one thing they’ll ill-afford.”

In different phrases, maintain an eye fixed out for suspicious cellphone calls, emails and texts. That is good recommendation for anybody, and never simply debtors who had information saved with FBCS. In any case, it was revealed that hackers stole greater than 2.7 billion information from American shoppers earlier this 12 months, which doubtless contains information on everybody who lives within the nation.