ZAGG Customers’ Credit Card Info Exposed in Third-Party Breach
ZAGG Credit Card Data Breach: What You Need to Know
Utah-based consumer electronics accessories manufacturer ZAGG recently faced a significant data breach that compromised the credit card details of its customers. The breach occurred due to vulnerabilities in the FreshClicks app, a third-party application linked to the software-as-a-service (SaaS) e-commerce platform, BigCommerce. This incident highlights the importance of cybersecurity measures in today’s digital landscape.
According to reports from BleepingComputer, the malicious infiltration of FreshClicks allowed cybercriminals to deploy harmful code that extracted sensitive information, including names, addresses, and credit card details from ZAGG.com shoppers between October 26 and November 7. ZAGG has filed a breach notice with the Office of the Maine Attorney General, although the exact number of customers affected has not been disclosed.
Understanding the Impact of the ZAGG Breach
- Compromised Data: Personal information, including credit card details, was at risk due to the breach.
- Remediation Efforts: ZAGG has confirmed that it is actively addressing the situation and has offered complimentary credit monitoring services to affected individuals.
- BigCommerce’s Response: BigCommerce has clarified that their internal systems were not compromised. They took immediate action to uninstall the FreshClicks app from ZAGG’s stores, which eliminated the compromised APIs and the malicious code used in this breach.
What Should Customers Do?
If you are a customer of ZAGG and shopped during the breach timeframe, here are steps you can take to protect yourself:
- Monitor Your Accounts: Regularly check your bank statements and credit card activity for any unauthorized transactions.
- Use Credit Monitoring Services: Take advantage of the complimentary credit monitoring offered by ZAGG.
- Update Passwords: Change your passwords for accounts linked to your credit card to enhance security.
Conclusion
This incident serves as a critical reminder of the vulnerabilities that can arise from third-party applications in e-commerce. Staying vigilant and informed is essential for consumers in the digital age. For more information on how to protect yourself from data breaches, consider visiting resources like the Federal Trade Commission’s guide on protecting personal information.
We encourage readers to share their thoughts on this incident and explore related articles for further insights into data security and consumer protection.