Amid all the euphoria over the launch of the OnePlus North marking the company's return to mid-range models, the Chinese smartphone maker suffered two security bugs in just one month, the latest of which resulted in sharing . broad spectrum emails for clients. An Android Police report said OnePlus sent a mass email to customers as part of a study earlier today, but ended up copying and pasting hundreds of email addresses into the "field." For ", the functionality of the BCC field is completely missing. This allowed all search email recipients to receive hundreds of customer email addresses. One misstep! The report says that the email may contain a survey of UX around the OnePlus and only reached those in the US (again).
A history of security breaches.
Late last month, OnePlus faced another security challenge when its out-of-warranty repair and advance billing exchange system revealed customer details like names, phone details, email addresses, etc. -mail, IMEI numbers and physical addresses. The breach only affected customers in the United States and was fixed immediately. This has been highlighted again by Android Police. In relation to these violations, the last one can be classified as minor, although it exposes flaws in OnePlus' processes. The company had confirmed in early 2018 that the credit card information of 40,000 customers had been compromised. It said this information theft took place over a two-month period, beginning in November 2017. The company then responded by temporarily disabling credit card payments while advising affected customers to monitor their bank statements. It also offered a year of free credit reports to customers whose data had been breached. Another data breach occurred last November when OnePlus fell victim to a hacking incident that revealed customer names, email addresses, and shipping addresses. However, once again, the company stepped up its action and informed customers that their payment details and passwords are not being exposed or viewed by third parties.
Nothing really to worry about
The latest incident happened today, though Android Police said they couldn't verify the exact number of people whose data was included in the leak, but described it as "quite minor" because the data had only reached other people in the leak's thread. email. The report quotes an anonymous person to suggest that "hundreds of email addresses" were present in the mail. These cases are reasonably common with media agencies distributing press releases to journalists before anyone on the list notices, responds by reporting it to the PR firm, and then watches the fun while everyone else. in the mail begins to expand the track. with similar answers (Via) Android Police