<p>It appears that a malicious script was injected into the OnePlus payment that has not been detected for almost 2 months.</p>
<div id="attachment_2424" style="width: 810px" class="wp-caption alignnone"><a href="https://www.wincert.net/wp-content/uploads/2018/01/oneplus.png"><img aria-describedby="caption-attachment-2424" class="wp-image-2424 size-full" title="oneplus" src="https://www.wincert.net/wp-content/uploads/2018/01/oneplus.png" alt="oneplus" width="800" height="402" /></a><p id="caption-attachment-2424" class="wp-caption-text">Image source: oneplus.net</p></div>
<p>More than 100 customers claimed that they have noticed transactions on their credit cards they didn&#8217;t make. One of the customers raised suspicion about OnePlus being the culprit since he used 2 credit cards just for OnePlus transactions and both cards had fraudulent activity afterward.</p>
<p>The company has confirmed this incident and have posted an update on their support forums:</p>
<blockquote><p>One of our systems was attacked, and a malicious script was injected into the payment page code to sniff out credit card info while it was being entered.</p>
<p>The malicious script operated intermittently, capturing and sending data directly from the user&#8217;s browser. It has since been eliminated.<br />
We have quarantined the infected server and reinforced all relevant system structures.</p>
<p>Some users who entered their credit card info on oneplus.net between mid-November 2017 and January 11, 2018, may be affected.</p>
<p>We recommend that you check your card statements and report any charges you don’t recognize to your bank. They will help you initiate a chargeback and prevent any financial loss.</p>
<p>We cannot apologize enough for letting something like this happen. We are eternally grateful to have such a vigilant and informed community, and it pains us to let you down.</p></blockquote>
<p>Customers that have used Paypal to make purchases were not affected.</p>