OnePlus Reveals Website Data Breach

Posted on November 24, 2019 by Paul Thurrott in Mobile, Android with 2 Comments

OnePlus this week said that some user’s names, contact numbers, emails, and shipping addresses were accessed by an unauthorized party.

“Last week while monitoring our systems, our security team discovered that some of our users’ order information was accessed by an unauthorized party,” a OnePlus FAQ explains. “We can confirm that all payment information, passwords and accounts are safe, but the name, contact number, email and shipping address in certain orders may have been exposed.”

OnePlus says that it contacted the impacted customers via email before publicly revealing the breach. So if you haven’t received an email from OnePlus, your customer data was probably not compromised. The firm recommends that any customers still concerned about this incident contact it via customer service.

“We’ve inspected our website thoroughly to ensure that there are no similar security flaws,” the company says. “We are continually upgrading our security program – we are partnering with a world-renowned security platform next month, and will launch an official bug bounty program by the end of December.”

This isn’t the first time that OnePlus’ website was compromised: It suspended online payments temporarily in January 2018 from a similar breach involving credit cards.

Tagged with

Join the discussion!


Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Comments (2)

2 responses to “OnePlus Reveals Website Data Breach”

  1. harrymyhre

    Kudos to OnePlus for being transparent

  2. Stooks

    Leaking your personal information just like The OS (Android) they use. Up sell it as a two for one deal!