The Chinese phone makers OnePlus suffer another data breach. This time the unauthorized party attacked the OnePlus online store. Some undisclosed number of customers details got exposed.
Last week while monitoring their systems, their security team discovered some unauthorized access of some of the user’s information. The company informed its users that all the payment details, passwords and accounts are safe, but the name, email address, mobile number and shipping address details got exposed.
The company did not provide any information regarding the vulnerability that the attackers exploited to compromise the online store. Still, they did inspect the server thoroughly to ensure that there are no similar vulnerabilities to prevent any data breach in the future.
“We took immediate measures to stop the attacker and reinforce the security to make sure there are no similar vulnerabilities. Right now, we are working with the relevant authorities to investigate this incident further”, said OnePlus.
The affected users may receive spam or phishing emails as a result of this incident. These are usually the next step into tricking the customers into sharing their passwords and the credit card details. Though your OnePlus might not be involved in the data breach, we would recommend you to change the password of your OnePlus online store accounts.
“We are continually upgrading our security program, and we are partnering with the world-renowned security platform next month and will launch an official bug bounty program by the end of December 2019”, said the company.
This wasn’t the first data breach that OnePlus reported. In January 2018 OnePlus experienced a data breach where the company’s website was hacked by the unknown attacker to steal payment and the credit card details up to 40,000 OnePlus customers.