On December 26, 2024, ZAGG Inc. filed a notice with the Attorney General of Maine after discovering that a vulnerability in FreshClick, an application created by BigCommerce and used by ZAGG, was compromised. In this notice, ZAGG explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, and payment card information. Upon completing its investigation, ZAGG began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from ZAGG Inc. or BigCommerce, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the ZAGG / BigCommerce data breach. For more information, please see our recent piece on the topic here.
What Caused the Data Breach Affecting ZAGG.com?
The ZAGG / BigCommerce data breach was only recently announced, and more information is expected in the near future. However, ZAGG’s filing with the Attorney General of Maine provides some important information on what led up to the breach. According to this source, on November 8, 2024, BigCommerce notified ZAGG that one of BigCommerce’s applications, called FreshClick, was compromised.
In response, ZAGG notified law enforcement, secured its website and then launched an investigation to learn more about what information may have been affected. Ultimately, the ZAGG investigation confirmed that an unauthorized actor injected malicious code that collected data from those who checked out at ZAGG.com between October 26, 2024 and November 7, 2024.
After learning that sensitive consumer data was accessible to an unauthorized party, ZAGG reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, and payment card information.
On December 26, 2024, ZAGG sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About ZAGG Inc
ZAGG Inc. is a provider of mobile device accessories, specializing in protective cases, screen protectors, keyboards, and portable power solutions. Headquartered in Midvale, Utah, ZAGG is widely recognized for its flagship brand, InvisibleShield, a screen protection technology, along with other popular brands such as mophie and Gear4. ZAGG serves customers worldwide through retail partners, online channels, and direct-to-consumer sales. ZAGG Inc. employs approximately 500 people and generates an estimated $550 million in annual revenue.
