Sony Q3 Profit Jumps on Gaming and Image Sensors, Full-Year Outlook Raised 
SoftBank Shares Slide After Arm Earnings Miss Fuels Tech Stock Sell-Off 
TSMC Eyes 3nm Chip Production in Japan with $17 Billion Kumamoto Investment 
Nvidia Nears $20 Billion OpenAI Investment as AI Funding Race Intensifies 
Instagram Outage Disrupts Thousands of U.S. Users 
Global PC Makers Eye Chinese Memory Chip Suppliers Amid Ongoing Supply Crunch 
Tencent Shares Slide After WeChat Restricts YuanBao AI Promotional Links 
Nvidia, ByteDance, and the U.S.-China AI Chip Standoff Over H200 Exports 
Nintendo Shares Slide After Earnings Miss Raises Switch 2 Margin Concerns 
SpaceX Reports $8 Billion Profit as IPO Plans and Starlink Growth Fuel Valuation Buzz 
Nvidia CEO Jensen Huang Says AI Investment Boom Is Just Beginning as NVDA Shares Surge 
Sam Altman Reaffirms OpenAI’s Long-Term Commitment to NVIDIA Amid Chip Report 
Baidu Approves $5 Billion Share Buyback and Plans First-Ever Dividend in 2026 
Nvidia Confirms Major OpenAI Investment Amid AI Funding Race 
SoftBank and Intel Partner to Develop Next-Generation Memory Chips for AI Data Centers 
Palantir Stock Jumps After Strong Q4 Earnings Beat and Upbeat 2026 Revenue Forecast 
Elon Musk’s SpaceX Acquires xAI in Historic Deal Uniting Space and Artificial Intelligence 
Security researchers recently found a bug on Comcast Xfinity’s official account activation website that allows attackers to easily obtain customers’ WiFi names and passwords.
ZDNet reported on the issue after getting a tip from security researchers Karan Saini and Ryan Stevenson. The subject of the bug was Xfinity’s official website where customers activate online services for their accounts.
According to the report and based on their own testing, the bug allows unauthorized people to obtain WiFi names and passwords of customers who are using Xfinity-provided routers. To illicitly collect these data, an attacker will only need to enter the target’s residential address.
These issues were confirmed by the publication after two Xfinity customers agreed to participate in the test and provided their home addresses.
The experiment revealed that the bugged website provided the correct WiFi name and password of the customer who uses an Xfinity router. Even worse, the website gave these data in plaintext or in its unencrypted, unscrambled form. So, ultimately, an attacker needs one information to intrude a personal WiFi connection.
The security issue does not end there. It was also found that the glitched website gives information of an Xfinity customer even when their WiFi connection is active and even after they have changed their WiFi name and password.
Though the compromised website requires a customer’s complete address, ZDNet commented that an attacker can gather that information by simply guessing a house number or, more easily, by snatching a utility bill thrown in the garbage.
By simply providing a customer’s address, an attacker can tamper the WiFi name and password of Xfinity routers — even custom ones — and later avoid the actual user to access his or her own WiFi connection.
As of this writing, the said website is still up and running and TechCrunch noted that the issue appears to still be in place. And since the bug appears to be useless when aimed at customers with a non-Xfinity router, buying one seems to be the only possible solution for now.
