"The settlement has just received preliminary approval under an order publicly released. If finalized, it will compensate more than 31 million people across the U.S. and its territories who received notification that their personal information may have been compromised. Comcast discovered the breach in October 2023 but did not disclose it publicly until December of that year, prompting scrutiny from customers, regulators, and security researchers."
"If finalized, it will compensate more than 31 million people across the U.S. and its territories who received notification that their personal information may have been compromised. Under the terms of the proposed settlement, eligible Comcast customers may seek reimbursement for documented out-of-pocket losses of up to $10,000 per person. Claimants can also request compensation for "Lost Time," covering hours spent dealing with the consequences of the breach, such as monitoring accounts, changing credentials, or addressing identity theft concerns."
Comcast agreed to a $117.5 million settlement of a class-action lawsuit tied to a large-scale late-2023 data breach. The settlement has received preliminary approval and would cover more than 31 million people across the U.S. and territories who were notified of potential compromise. Comcast discovered the breach in October 2023 but disclosed it publicly in December. The incident was linked to the CitrixBleed vulnerability in Citrix NetScaler Application Delivery Controller and Gateway appliances, which allowed attackers to hijack sessions and steal credentials; session tokens could remain valid after patches. Eligible customers may seek reimbursement for documented out-of-pocket losses up to $10,000 and compensation for time spent addressing breach-related issues. Comcast did not admit wrongdoing.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]