Norway



- dr staff 125x125 - Up to 40K Affected in Credit Card Breach at OnePlus

The smartphone manufacturer has sent an email to anyone who may have been affected in the breach.

Chinese smartphone manufacturer has reported a card breach affecting up to 40,000 users at .net. Users who entered their credit card data on the website between mid-November 2017 and January 11, could be at risk.

Over the weekend of Jan. 13, OnePlus reported unknown credit card transactions appearing on their accounts following purchases from oneplus.net. The company began an investigation and learned one of its systems was attacked. A malicious script was injected into the payment page code to discover credit card information as it was being entered.

The malicious script has been eliminated, the infected server quarantined, and all relevant system structures reinforced. Users who paid using a saved credit card, the “Credit Card via PayPal” option, or PayPal should not be affected, OnePlus reports.

“This breach should be a reminder that HTTPS, while encrypted, is not a guarantee of a secure transaction as attackers can compromise the systems at both ends of any encrypted conversation,” says Chris Morales, head of analytics at Vectra.

Read more details here.

Dark Reading’s Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

More Insights



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here