OnePlus is a popular brand in India with as much a market share of about 35%. OnePlus leads the premium segment for two quarters in a row. Indian users choosing to move to the premium category generally eye OnePlus phones. This has led to the brand becoming wildly popular here. OnePlus Data Breach is the latest in news. Recently, OnePlus issued a statement where they stated that some user information was accessed by unauthorized parties. This came to light during a routine system check. Users of devices across the OnePlus range were affected, including OnePlus 6, OnePlus 7, and more.
CERT-In is India’s nodal agency for cybersecurity. The body recently issued a recommendation for OnePlus smartphone users in India. They advised them to change their account passwords. It was mentioned that the orders and related details of about 3,000 customers were exposed during the systems breach. The information exposed includes data such as name, address, email. The reason why this is alarming is that this kind of data could be easily used to impersonate the individual and get access to their personal accounts. The cybersecurity agency has classified this under ‘medium’ severity rating.
The official advisory by CERT-In asks OnePlus users to change their passwords immediately after a data breach comes to light. Do not to open shady URL links or open any kind of attachments to remain safe. OnePlus mentioned that the breached data does not include passwords, bank account details, or payment card details. All the impacted users would be notified by email.
This breach occurs at a time when OnePlus is working to shift its data to Amazon Web Services (AWS) India servers from Singapore. This is not the first time the company has experienced security breached. In 2018, the financial data and bank card details of more than 40,000 users were exposed, leading to a major issue. This time, the exposure has been relatively less according to both CERT-In and OnePlus.
Since users may receive random phishing emails or spam, the body has put the users on high alert by asking them not to open any spam email even if it looks authentic. In short, if you don’t know the sender, be wary of the contents.
How Can Users Stay Safe?
With so many instances of data breaches, even with the top companies has led to the user trust issues. In fact, even cyberlaw experts recommend the following basic cybersecurity measures to stay aware and stay safe. It is always better to follow simple procedures. This includes enabling two-factor authentication, a strong password, and so on. Being diligent will ensure you stay protected in the face of crisis.
Did you know that if you find that your personal data is breached, you can sue the company for unlimited damages under Section 43A of the IT Act. In addition to this, you would also be able to file criminal charges against the company. According to the law, the intermediary is responsible for holding the data in trust. Follow the advisory and stay safe.