An Interest In:
Web News this Week
- April 25, 2024
- April 24, 2024
- April 23, 2024
- April 22, 2024
- April 21, 2024
- April 20, 2024
- April 19, 2024
Some of Our Sources
- Slashdot
- Engadget
- Web Designer Wall
- Spoon Graphics
- Fuel Your Creativity
- My Ink Blog
- Reencoded
- 24 Ways
- Wal You
- Freelance Switch
Help Webnuz
Referal links:
May 22, 2018 02:10 am
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/NfMpgN22ubw/comcast-website-bug-leaks-xfinity-customer-data
Comcast Website Bug Leaks Xfinity Customer Data
An anonymous reader quotes a report from ZDNet: A bug in Comcast's website used to activate Xfinity routers can return sensitive information on the company's customers. The website, used by customers to set up their home internet and cable service, can be tricked into displaying the home address where the router is located, as well as the Wi-Fi name and password. Two security researchers, Karan Saini and Ryan Stevenson, discovered the bug. Only a customer account ID and that customer's house or apartment number is needed -- even though the web form asks for a full address. ZDNet obtained permission from two Xfinity customers to check their information. We were able to obtain their full address and zip code -- which both customers confirmed. The site returned the Wi-Fi name and password -- in plaintext -- used to connect to the network for one of the customers who uses an Xfinity router. The other customer was using his own router -- and the site didn't return the Wi-Fi network name or password.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/NfMpgN22ubw/comcast-website-bug-leaks-xfinity-customer-data
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot