14 DAY TRIAL // Comcast is investigating the claims of NullCrew hackers who have apparently breached several of the Internet service provider’s mail servers after exploiting a local file inclusion (LFI) vulnerability.
“We’re aware of the situation and are aggressively investigating it. We take our customers’ privacy and security very seriously and we currently have no evidence to suggest any personal customer information was obtained in this incident,” reads the brief statement provided by Comcast to Multichannel News.
On the other hand, some believe that this incident should be treated far more seriously.
As ZDNet’s Violet Blue highlights, the Zimbra LFI security hole exploited by NullCrew was fixed in December 2013. However, Comcast has reportedly failed to patch it, leaving its mail servers exposed to cyberattacks.
The vulnerability could be exploited to gain access to sensitive information stored in some of Comcast’s databases.
Even if NullCrew hasn’t actually stolen any information, the fact that they published the details of the vulnerability on Pastebin means that other cybercriminals could have taken advantage of the information.
As a precaution, users should probably change their Comcast passwords, and all other passwords if the same one is used for multiple services.