OnePlus warns customers that their personal details "may have been exposed" but that payment details, passwords, and accounts are safe.
The company confirmed the news in a forum post, although affected users were reportedly contacted before it went public with the announcement. The data breach saw names, phone numbers, email, and shipping addresses accessed by a hacker, and as such, OnePlus has warned customers that they may get an influx of spam and phishing emails as a result.
If you're a OnePlus customer and haven't received an email saying your details are out in the world, you're just fine by the sounds of things. For now, there are no steps to be taken. Just try not to fall for any scams or give away your bank details to every Tom, Dick, and Harry who asks for them.
"While monitoring our systems, our security team discovered that some of our users' order information was accessed by an unauthorised party," explained the OnePlus security team, adding that "immediate steps" were taken to "stop the intruder and reinforce security, making sure there are no similar vulnerabilities."
The last time this happened was January 2018, although it was worse than this instance, with as many as 40,000 customers having their credit card information stolen by hackers.
OnePlus has apologised and said that it's "partnering with a world-renowned security platform next month, and will launch an official bug bounty program by the end of December," so fingers crossed, that's the last of it. [TechRadar]