We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of cybersecurity researchers, writers, and editors continues to help readers maintain their online freedom in partnership with Kape Technologies PLC, which also owns the following products: Holiday.com, ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and detailed examination by the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of cybersecurity researchers, writers, and editors continues to help readers maintain their online freedom in partnership with Kape Technologies PLC, which also owns the following products: Holiday.com, ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and detailed examination by the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Hacker Group Medusa Claims Comcast Breach

Hacker Group Medusa Claims Comcast Breach
Andrea Miliani Published on October 04, 2025 Cybersecurity Researcher

According to Cybernews, Medusa Ransomware posted its demands on the dark web last Friday, along with 33 images as proof of the 834.4 GB of stolen data. The screenshots allegedly show financial documents and sensitive information related to both employees and customers. Comcast has not confirmed the breach.

“The size of the data leak indicates that it could be a serious breach, strongly suggesting the stolen files include a wide variety of data types far beyond the initially revealed documents,” said Mantas Sabeckis, Information Security Researcher at Cybernews. “The data in these documents dates as early as 2020 up to 2025, leading us to believe that they’ve breached the core business system and exfiltrated sensitive files.”

The leaked images reportedly include a file tree showing stolen directories from different departments. Examples include Human Resources (training, employment, and compliance records) and Security (logs and reports).

“The file tree list reveals that attackers have exfiltrated not just regular files but also backups of multiple production databases, human resources data, customer and billing data, insurance operations, and internal IT and security data,” said Sabeckis.

The hackers also attached a countdown timer to their dark web post, giving Comcast about 11 days to pay the $1.2 million ransom and delete the data. A potential buyer could also access the data by paying the requested amount.

If Medusa’s claims prove true, this would not be Comcast’s first cybersecurity incident. Last year, Comcast and Truist Bank announced a data breach involving their partner Financial Business and Consumer Solutions (FBCS) in October. Its internet company Xfinity, was also breached by the end of last year, affecting around 32 million customers.

About the Author

Andrea is a seasoned tech journalist with a growing passion for cybersecurity, covering cyberattacks, AI breakthroughs, and the latest trends shaping the future of technology.

Please, comment on how to improve this article. Your feedback matters!

Leave a comment

This field must contain more than 50 characters

The field content should not exceed 1000 letters

Sorry, links are not allowed in this field!

Name should contain at least 3 letters

The field content should not exceed 80 letters

Sorry, links are not allowed in this field!

Special characters are not allowed in the Name field

Please enter a valid email address