Comcast says customer data stolen in ransomware attack on debt collection agency

Date:

Share post:


U.S. telecom giant Comcast has warned that cybercriminals stole the personal data of more than 230,000 customers during a ransomware attack on a third-party provider of debt collection services.

The breach relates to a February cyberattack on Financial Business and Consumer Solutions (FBCS), a Pennsylvania-based debt collection agency used by Comcast. 

In a filing with Maine’s attorney general on Friday, Comcast said that FBCS initially told the company in March that the security incident involved no Comcast customer data. Later in July, FBCS notified Comcast that its customer data had in fact been compromised.

Comcast says that 237,703 subscribers are affected by the data breach, with hackers accessing their names, addresses, Social Security numbers, dates of birth, and Comcast account numbers and ID numbers. 

The stolen data belongs to those registered as customers at “around 2021,” Comcast says, adding that the company stopped using FBCS for debt collection in 2020.

FBCS has not yet revealed the nature of its security incident but Comcast’s filing confirms it was a ransomware attack. 

“From February 14 and February 26, 2024, an unauthorized party gained access to FBCS’s computer network and some of its computers,” the filing states. “During this time, the unauthorized party downloaded data from FBCS systems and encrypted some systems as part of a ransomware attack.”

The incident has not yet been claimed by any major ransomware group and FCEB previously blamed an “unauthorized actor” for the attack. 

FCEB did not respond to TechCrunch’s questions.

In a filing with Maine’s attorney general earlier this year, FBCS confirmed that more than four million people had their personal information accessed during the February cyberattack. It’s not known how many of FBCS’ customers were affected, but the organization said in its data breach notice that, in some cases, the attackers accessed medical claims and health insurance information.

CF Medical, a medical debt-purchasing company that goes by the trade name Capio, has confirmed it was among the organizations that saw customer health information stolen as a result of the FBCS breach. In September, CF Medical said more than 620,000 individuals had personal and health information stolen.

Truist Bank — one of the largest banks in the United States — also confirmed it was affected by the incident, as recently filed with California’s attorney general. It’s not yet known how many of Truist Bank’s 10 million customers were affected, but the banking giant warned that the attackers accessed names, addresses, account numbers, dates of birth, and Social Security numbers.



Source link

Lisa Holden
Lisa Holden
Lisa Holden is a news writer for LinkDaddy News. She writes health, sport, tech, and more. Some of her favorite topics include the latest trends in fitness and wellness, the best ways to use technology to improve your life, and the latest developments in medical research.

Recent posts

Related articles

Hyundai is giving away free Tesla NACs adapters to its EV customers

Hyundai said Monday it will send customers who have bought or leased an EV before January 31...

OpenAI’s o3 suggests AI models are scaling in new ways — but so are the costs

Last month, AI founders and investors told TechCrunch that we’re now in the “second era of scaling...

Nvidia’s CES 2025 keynote: How to watch

Nvidia will no doubt have the biggest CES 2025. After all, the company has pretty much the...

An investigation finds that Google Maps fails users in the West Bank 

A Wired investigation found that Google Maps can be near impossible to use in the West Bank,...

AI startups attracted 25% of Europe’s VC funding

Venture funding into Europe is heading for a flat year, but this may obfuscate the fact that...

Coralogix acquires AI observability platform Aporia

Coralogix, the well-funded observability platform, on Monday announced that it has acquired Aporia, a startup that focuses...

CES 2025 is coming: TechCrunch wants to meet your hardware startup

According to the calendar, we’re a mere weeks out from CES — the perfect gift for your...

Eero’s Outdoor 7 long-distance mesh unit solved our yearslong Wi-Fi quandary in 10 minutes

So far in life, I haven’t needed be a “mesh guy.” A well-chosen and carefully placed Wi-Fi...