Comcast has reached a $117.5 million settlement to resolve claims stemming from a 2023 data breach that exposed sensitive customer information, according to court filings. The proposed deal, pending judicial approval, would provide compensation to affected subscribers whose personal data was compromised in the security incident.
The breach, which occurred in early 2023, reportedly exposed names, addresses, phone numbers, and partial Social Security numbers of nearly 36 million Xfinity customers. Cybersecurity analysts note this ranks among the largest telecom data exposures in recent years. “When companies of this scale experience breaches, the ripple effects can last years,” said a data privacy expert familiar with the case who requested anonymity due to ongoing litigation.
Court documents indicate the settlement includes $50 million for customer reimbursements, $64.5 million for credit monitoring services, and $3 million in administrative costs. Eligible claimants could receive up to $500 for documented losses or 24 months of free credit monitoring. Sources close to the negotiations suggest Comcast opted for settlement to avoid protracted legal battles, though the company maintains there’s no evidence of fraudulent use of the exposed data.
This resolution comes as regulatory scrutiny intensifies around telecom data practices. The FTC recently proposed stricter cybersecurity requirements for internet service providers, while several states have expanded consumer data protection laws. Legal observers predict the settlement terms may establish benchmarks for future breach-related cases in the telecommunications sector.