Home - , , , , - Boom! Mobile Website Hacked, Customers Advised to Call Credit Card Company

Boom! Mobile Website Hacked, Customers Advised to Call Credit Card Company

Boom! Mobile's website was recently hacked.

This was initially reported by Ars Technica, who gave a full detail about the incident. According to the report, a bit of malicious code was inserted onto the checkout section of the MVNO's official website. 

The hackers included code that skimmed payment information and credit card numbers from the customers of the MVNO. The website was able to note that the malicious code was live for at least a few hours, or could possibly be even longer. 

The publication noted that the MVNO ran an outdated PHP version at the time of the hack. But there is no word on the extent of vulnerability that was taken by the hackers and if it was an isolated incident. This incident, however, seems to be a violation of the rules imposed by the PCI DSS

Boom! turned to HowardForums to confirm the incident and share their response:

Hey guys,

Thanks for checking in.

boom MOBILE deeply regrets this incident happened. From the start, we moved quickly to contain the incident and conduct a thorough investigation. We have found that the malware was located only on our shopping cart at boom.us and not on any of our other sites such as myaccount.boom.us which is used by customers to manage their billing. We encourage customers who may have made a purchase from www.boom.us between 9/30/20 – 10/5/20 to take the necessary precautions with their credit card company. This incident did not compromise any boom MOBILE accounts, saved payment or autopay details. Our saved payment/autopay system does not store any bank information and was verified to be safe. The credit card processor provides us with a secure token than can only be used by boom! MOBILE from our secure server. We are committed to protecting your data & privacy. We are PCI compliant and do not store financial data on our servers. Our shopping cart provider has ensured us our site is safe and the malware has been removed.

If you are one of the customers who made an online purchase between September 30 and October 5, 2020, it's best that you take necessary precautions with your credit card company just to be sure that your account will not be used for fraudulent activity. 

Boom! Mobile is an MVNO that uses the networks of AT&T, Verizon, and T-Mobile.

0 comments to "Boom! Mobile Website Hacked, Customers Advised to Call Credit Card Company"

Leave a comment

All comments must be approved before they will appear. The following types of comments will not be approved: off topic comments, insults or personal attacks directed at other commenters, bigotry, hate, sexism and profanity.