Credit Card Thieves Target ZAGG Customers Through BigCommerce App Breach

Credit Card Thieves Target ZAGG Customers Through BigCommerce App Breach

ZAGG Data Breach Exposes Customer Credit Card Information

ZAGG Inc., a prominent consumer electronics accessories manufacturer with $600 million in annual revenue, has disclosed a significant data breach affecting its customers. The security incident occurred through a compromised third-party application, FreshClicks, provided by their e-commerce platform partner BigCommerce.

The Breach Details:
– Timeframe: October 26 – November 7, 2024
– Compromised data: Customer names, addresses, and payment card information
– Attack method: Malicious code injection into the FreshClicks app
– Affected platform: ZAGG.com checkout process

BigCommerce, an Austin-based SaaS e-commerce platform, confirmed that while their systems remained secure, the third-party FreshClicks application was compromised. Upon discovery, BigCommerce immediately uninstalled the affected app from all customer stores to prevent further data exposure.

Response and Remediation:
– ZAGG has notified federal law enforcement and regulators
– Affected customers will receive 12-month free credit monitoring through Experian
– Customers are advised to:
– Monitor financial accounts
– Place fraud alerts
– Consider implementing credit freezes

The total number of affected customers remains undisclosed. FreshClicks, which has developed six BigCommerce add-ons with 178 reviews, may have temporarily removed the compromised plugin from the marketplace.

Share This Article