Comcast has confirmed that the personal data of over 230,000 customers was stolen during a ransomware attack on a third-party debt collection agency, Financial Business and Consumer Solutions (FBCS). The breach happened in February 2024, but FBCS initially told Comcast that no customer data was compromised.
Unfortunately, the stolen data includes names, addresses, Social Security numbers, dates of birth, Comcast account numbers, and ID numbers. The affected customers were registered as subscribers around 2021, and Comcast stopped using FBCS for debt collection in 2020. FBCS initially blamed an "unauthorized actor" for the attack and chose not to give any more details. However, Comcast's filing with
Maine's attorney general confirms it was a ransomware attack. The attackers accessed FBCS's computer network and downloaded data from its systems before encrypting some of them.
