Comcast Settles $117.5M Data Breach Class Action for Xfinity Customers

Comcast Settles $117.5M Data Breach Class Action for Xfinity Customers

First seen 14 May 2026, 19:01 UTC CnetAolAlMashableNewsweek+4 92% similarity 64.5

Article Content

Browse articles
ThreatCluster

Comcast has agreed to a $117.5 million settlement due to a data breach that exposed personal information of approximately 36 million Xfinity customers in October 2023. The breach, which was publicly disclosed on December 18, 2023, resulted from hackers exploiting a Citrix software vulnerability. Affected customers may claim a flat payment of around $50 or up to $10,000 for documented losses. The settlement is open for claims until August 14, 2026, with a final court approval hearing scheduled for July 7, 2026. Comcast denied wrongdoing but opted for a settlement to resolve the class-action lawsuit. Customers must have received a breach notification to be eligible for compensation. The breach involved sensitive data, including usernames, passwords, and Social Security numbers.

Key Points: • Comcast's data breach affected approximately 36 million Xfinity customers. • The breach was linked to a Citrix software vulnerability exploited by hackers. • Eligible customers can claim up to $10,000 for documented losses related to the breach.

ThreatCluster AI

Timeline

2023-10-16
Data breach occurred
Hackers exploited a Citrix vulnerability to access Comcast's internal systems, affecting customer data.
Aol
2023-12-18
Breach publicly disclosed
Comcast announced the data breach, revealing that customer information had been compromised.
Aol
2026-01-05
Preliminary settlement reached
Comcast agreed to a $117.5 million settlement in response to the class-action lawsuit.
Cnet
2026-05-12
Settlement claims open
Comcast began accepting claims for the settlement, with a deadline set for August 14, 2026.
Cnet
2026-07-07
Final approval hearing scheduled
The court will hold a hearing to approve the settlement agreement.
Cnet

Community

Browse all →