Over 3000 Users Affected Due To OnePlus Data Violation

OnePlus has disclosed a security breach that affected users during which the tech manufacturing company has revealed the names, email address, phone numbers, and shipping addresses has been exposed.

At least the query regarding the extent of a security violation on Indian users has been replied by OnePlus - Indian Cybersecurity Agency CERT-In has now released an advisory for its customers. The advisory stated that less than 3000 customers in India were revealed in the latest security violation.

As a safety measure, the affected users were suggested to change their account passwords with a strong one. On November 22, OnePlus had claimed that the password info wasn’t accessed.

CERT-In further said that the users may get spam and phishing emails as a result of this incident and urges the users to stay alert against these sorts of spam mails. The tech manufacturing company has also asked users not to open attachments and recommended not to click on a URL contained in a spam email, even if it seems genuine. However, the severity of the security breach was rated as “medium”.

As per the Counterpoint Research, OnePlus has 35 percent of premium smartphone market share in India. With the premium sector contributing around 5 percent of the market by volume for the quarter, the company has led this sector for two successive quarters. OnePlus is considered as the option for smartphone consumers in India moving to the premium category.

OnePlus has discovered some of its user’s order data was accessed by unauthorized group during a system check. The tech manufacturing company claimed to have sent emails to the affected users. However, it further said that the user’s name, email address, phone number, and shipping details were being exposed.

OnePlus continued that those who haven’t received an email from the team were secured from the data violation. It further said that the company has taken instant measures to stop further intrusions and strengthen security, and assured to work with the relevant cybersecurity agencies to probe the matter.