If you’re in the market for a new cell phone plan, it’s best to avoid turning to Boom! Mobile. That is, unless you don’t mind your sensitive payment card data being sent to criminals in an ongoing attack a few hours ago.
According to researchers from security firm Malwarebytes, Boom! The boom.us Mobile website has been infected with a malicious script that extracts payment card data and sends it to a server under the control of a criminal group investigators have named Fullz House. A malicious script is called by a single line that contains mostly nonsense characters when viewed with the human eye.