News
News Categories

Up to 40,000 OnePlus customers were affected by credit card security breach

By Cookie Monster - on 22 Jan 2018, 1:00am

Up to 40,000 OnePlus customers were affected by credit card security breach

OnePlus' online payment system suffered a serious security breach which affected up to 40,000 customers.

The security breach came to light after members of the OnePlus community reported cases of fraudulent credit card transactions from OnePlus.net two weekends ago. The company immediately investigated the cases and suspended credit card payments although the PayPal option is still available. 

In a forum post update on 19 January, OnePlus confirmed that one of its systems has been attacked and amalicious script was injected into the payment page code to steal credit card information when it was being entered.

The malicious script was found to have operated intermittently on one server, capturing and sending data directly from the user's browser. OnePlus states that the malicious script has since been eliminated and the infected server quarantined. 

The company also revealed that customers who entered their credit card details between mid-November 2017 and 11 January 2018 may be affected. OnePlus has sent out emails to these customers and is working with current payment providers to implement a more secure credit card payment method, as well as conducting an in-depth security audit to prevent similar incidents from happening in the future. 

Source: OnePlus, The Verge

Join HWZ's Telegram channel here and catch all the latest tech news!
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.