The breach was discovered when the security team was monitoring OnePlus’ systems and noticed that an unauthorized party was accessing some of their users’ order information. The team took immediate action to stop the intruder and reinforced security to make sure that no similar vulnerabilities were present.
Prior to the announcement, the company has sent out emails to impacted users, notifying them of the breach. While on the other hand, OnePlus also confirmed that all payment information, passwords, and accounts are still secure, but warns affected users that they may receive spam and phishing emails as a result of this incident. The company also apologised for the breach and the inconveniences caused to its users, and will continue to further improve their security program. The staff member also mentioned in the announcement that OnePlus will be partnering with a world-renowned security platform next month but did not disclose its name – at least until an official statement is released by the company in the near future. (Source and top image: OnePlus)