Several Visible Wireless customers are reporting that their accounts have been “hacked” this week. Visible runs on Verizon’s 5G and 4G LTE networks. Rather than being a mobile virtual network operator (MVNO), Visible is actually owned by Verizon.
Suspicions of a data breach at Visible began on Monday after some customers noticed random unauthorized purchases on their Visible accounts:
@visible I was just hacked! He sent himself a phone call and changed my address! Urgent!’ How do I stop this!!!! Make it fast!!
— kelly (@ksmrz77) 12 October 2021
On the Visible subreddit, users have reported seeing unauthorized orders placed from their accounts that have a different shipping address than their accounts:
cool someone hacked me @visible account, bought the iPhone using my PayPal, and changed the password. @visiblecare is not responding. The scammers even tricked me with email spam so that I missed any email notifications from Visible.
— christian kim (@kristiankim) 13 October 2021
Credential stuffing is probably the cause of hacked accounts
In an email sent to customers and a public announcement posted yesterday, Visible shared what may have caused these hacks:
“We have become aware of an incident in which information on some member accounts was changed without their authorization. We are taking protective measures to secure all affected accounts and prevent any further unauthorized access,” Visible said in one Announcement. “Our investigation indicates that the threats were able to access usernames/passwords from external sources, and exploit that information to login to visible accounts. If you use multiple accounts, including your bank or other financial accounts If you use your visible username and password in the U.S., we recommend updating your username/password with those services.”
Rather than the data breach in Visible itself, the company’s wording makes it appear as if customer credentials were obtained from a third-party leaked or breached database and then used to access customer accounts—a practice known as credential stuffing. known as. The company advises customers to reset password and security information and will prompt users to re-verify payment information before making further purchases.
but the experts cast doubt On theories that the incident stemmed from credential stuffing, Visible also admitted to “technical issues” on its chat platform, with the company briefly unable to make any changes to customer accounts this week. Referring to this information, the company deleted Visible’s tweet.
Was Visible aware of this incident from last week?
Although a public statement from Visible came yesterday, the company previously accepted Issue on Twitter on October 8th, if not earlier. Interestingly, an unclear reason was provided at the time – order confirmation emails were sent by Visible in error. “We’re sorry for any confusion this has caused! There was an error sending this email to members, please ignore it.”
A Visible customer reacted angrily to the delay: “This response is completely irresponsible, given the fact that you are currently under attack and are aware of the many users whose accounts have been compromised.” “
Despite the panic among hacked customers, it can, at least, be relieved by the fact that customers will not be held liable for any unauthorized charges. “If there is a false allegation on your account, you will not be held accountable, and the allegations will be reversed,” the company said, adding that the investigation is ongoing.
In addition to monitoring suspicious transactions, Visible customers affected by the incident should change their credentials on the Visible websites and any other websites where they have used similar credentials.