The all-digital wireless carrier Visible has finally addressed issues its users were having with their accounts this week.
Multiple customers voiced their complaints on Reddit and other social media sites, saying they had been locked out of their accounts, had their addresses changed, and had still not gotten any response from Visible.
The company came forward and confirmed the attack in a Twitter thread on Wednesday afternoon, writing that it was "aware of an issue in which some member accounts were accessed and/or charged without their authorization."
"As soon as we were made aware of the issue, we initiated a review and deployed tools to mitigate the issue, enabling additional controls to protect our members further. Our investigation indicates that threat actors were able to access username/passwords from outside sources and exploit that information to login to Visible accounts," the company claimed.
The company urged affected customers to contact them if any charges were made to their account without their knowledge.
A Reddit user said on Monday that they discovered a $1,175.85 charge to their account coming from Visible. When they investigated further, they discovered that a 128GB iPhone 13 Pro Max had been purchased and sent to an address in New York City, far away from their home in the DC/Virginia area.
"Visible basically offered nothing. I asked them what the hell is this, and they asked me if I had the order number. I said no since my entire account was hijacked and the emails don't come to me," the user wrote.
"I asked if I can be given access to my account again, and they said, 'We're not sure.' I should be hearing back within 24-48 hrs."
In a later message on Reddit, a Visible spokesperson denied that the company had been breached or compromised, claiming that only "a small number of member accounts was changed without their authorization."
"We don't believe that any Visible systems have been breached or compromised, nor that this unauthorized access to your Visible account is ongoing," the company said.
"However, for your protection, we recommend you review your account contact information and change your password and security questions to your Visible account. We also recommend that you review any other accounts that share the same email, login, or password, and make any changes you determine necessary to secure those accounts."
Visible isn't the only carrier dealing with cybersecurity issues. In August, hackers breached T-Mobile's systems, exposing the sensitive information of more than 50 million current, former, and prospective customers.