Boost Mobile, a California-based mobile phone company, has identified unauthorized online account activity affecting an unknown number of customers. The letter posted to customers on Boost’s site provided vague details; however, it was noted that the Boost Mobile team implemented a permanent solution. Customers were sent new temporary PIN codes and asked to create a new PIN upon notification. To avoid credential stuffing, it was recommended that customers refrain from using simple codes such as 1234. The NJCCIC advises Boost users to immediately change their PIN and review their online account to ensure the information is correct. If any information has been changed without user permission, immediately contact Boost Mobile Customer Care at 1-866-402-7366. Lastly, enable multi-factor authentication (MFA) if available. For more information please review SecurityWeek’s article.