News

OnePlus reports user data leakage

OnePlus reported a leak, because of which in the hands of the attackers appeared various data from users of the online store of the smartphone manufacturer.

A security gap was discovered last week: it turned out that the OnePlus company’s website had a certain vulnerability, details of which have not been disclosed.

Using this bug, unknown attackers were able to gain access to previous orders of users. So in the hands of hackers were the names of customers, contact numbers, email addresses and delivery addresses. It is emphasized that passwords and financial data were not affected.

Read also: Troldesh ransomware has become a leader in the number of attacks in the first half of 2019

“Last week during routine monitoring of our systems, our security team discovered that some of our users’ order information was accessed by an unauthorized party. We can confirm that all payment information, passwords and accounts are safe, but the name, contact number, emails and shipping address in certain orders may have leaked”, — report in OnePlus.

Related Articles

OnePlus representatives assured that they had already eliminated the vulnerability, thoroughly examined their site, looking for other similar problems, and also cooperate with law enforcement agencies and conduct further investigations.

The company also said that bug bounty will be officially launched next month.

“We’ve inspected our website thoroughly to ensure that there are no similar security flaws. We are continually upgrading our security program – we are partnering with a world-renowned security platform next month, and will launch an official bug bounty program by the end of December”, — report in OnePlus security setvice.

It can be assumed that these words relate to collaboration of OnePlus and HackerOne.

Racall that this is not the first such incident involving OnePlus. At the beginning of 2018, the company already suffered from data leakage. That time the attackers stole information about 40,000 users, including information about their bankcards.

How do I know if my information was involved?

Company OnePlus understand that personal information is very important to their users, and all impacted users were notified via email. If you don’t get an email from OnePlus today, rest assured that your order information is safe.

William Reddy

I am from Ireland. My parents bought me a computer when I was 11, and several month after I have got a virus on this PC. I decided to enter the INSA Centre Val de Loire university after being graduated from the school. This French educational institution was offering a brand-new cybersecurity course. After getting the master degree in cybersecurity, I've started working in as virus analyst in a little anti-malware vendor. In 2018, I've decided to start Virus Removal project. The main target of this site is to help people to deal with PC viruses of any kind.

Leave a Reply

Your email address will not be published. Required fields are marked *

Sending

Back to top button