Expired SSL Certificates Are Risky: 14.7 Million People Affected by the Mr. Cooper Data Breach

1 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 5 (1 votes, average: 5.00 out of 5, rated)
Mr. Cooper and Xfinity Data Breaches

14.7 million people are getting notice letters from mortgage giant Mr. Cooper informing them that a recent cyberattack resulted in the theft of their confidential information. Mr. Cooper checked and confirmed that the recent unexpected event has led to the compromise of both personal and financial information.

According to the company’s declaration in early November 2023, the situation was uncovered on October 31, 2023, and eventually resulted in the shutdown of many systems, including those that handled consumer payments.

Mr. Cooper started alerting customers on December 15 that intruders had gained access to some networks and allegedly ex-filtrated files containing sensitive user data between October 30 and November 1.

This recent breach has exposed the financial and personal information of 14.7 million individuals connected to the massive mortgage company, Mr. Cooper. Names, locations, dates of birth, mobile phone numbers, identification numbers, and financial account details are among the information that was compromised. 

According to Mr. Cooper, the systems that were shut down after the incident have been fully recovered, and the company is keeping an eye on the dark web to see whether the attackers are sharing the stolen content.

Moreover, the organization stated that “based on our findings to date, approximately 14.7 million homeowners, representing current and former customers and co-borrowers, had personal data contained in the files that were impacted by this incident.”

After the incident, Mr. Cooper worked to get its systems back working correctly while checking the dark web for any disclosures of the stolen data and offering protection of identities as well as monitoring of credit services to any individual impacted by the incident to lessen its effects.

The company specified that there was a system failure on the day of the intrusion, which was subsequently identified as a cybersecurity event. It is predicted that the organization will have to pay at least $25 million in costs because of this incident, mainly for the two years it will provide identity protection to its present and past clients.

Another Case: Xfinity Data Breach affected about 36 Million Users

Yet another instance occurred when Xfinity, a provider of home and portable internet, said in October that there had been a data breach. Nearly all of Xfinity’s customers’ personal information is currently in the hands of hackers as a result of a data breach.

Due to a security flaw in one of its software providers, Citrix, a breach led to the compromise of passwords, usernames, and partial social security numbers. Around 36 million people are affected by the newly reported Xfinity data breach, which involves using the CitrixBleed vulnerability.

CitrixBleed, a Citrix Netscaler ADC and Gateway vulnerability identified as CVE-2023-4966, was used in the Xfinity attack. This severe vulnerability allows attackers to take control of active sessions while gaining access to the systems of the targeted organization.

Because of this significant vulnerability, attackers can take over ongoing sessions and access the targeted organization’s systems.

To secure vulnerable accounts, Xfinity requires its users to change their passwords. To enhance the security of their account, the business “vigorously recommends” that users configure multi-factor or two-factor authentication.

Expired or Outdated SSL Certificate can harm your Orgaization!

Buy or Renew your SSL Certificate Now at Lowest Price
Janki Mehta

Janki Mehta

Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.