OnePlus' Security Flaw Has Finally Been Fixed

Har Devarukhkar - Aug 16, 2019


OnePlus' Security Flaw Has Finally Been Fixed

OnePlus is found to have been leaking users’ personal data for years. Fortunately, the company has reportedly fixed this security flaw.

OnePlus, a Chinese smartphone manufacturer has eventually dealt with its users’ personal information leak security flaw that has happened for years ever since OnePlus One was introduced to the public. In June, 9to5Google published a report saying that smartphones of this brand had “unknowingly” exposed sensitive data of hundreds of users for a long period of time. However, not until this security issue was made known to the firm did it start an investigation into the problem.

1
OnePlus has allegedly been leaking users’ personal information for years.

Although OnePlus has made no official statement about the fix, according to a recent report of 9to5Google, the security flaw has been addressed.

The serious flaw in security was detected a month ago in a pre-installed application called “Shot on OnePlus”, which can be found through the Wallpapers selection menu. The app offers a platform where users can upload their photos. Every day OnePlus will select one photo to publicly feature within the app as well as on its website and other users across the globe can use these photos as wallpapers.

2
“Shot on OnePlus” was reported to have a major security flaw.

To get started, users have to be logged in to the OnePlus account using their email address. When uploading a photo to the app, they are required to add a title, a location and a description of the photo. In this way, the app gets information about users’ names, locations, and email addresses and the data was reportedly leaked via the application.

All OnePlus users having “Shot on OnePlus” app on their devices got affected by this security flaw. It is still not clear how long users’ personal information had been leaking through the app, but the leak must have happened for no less than a year. The problem was allegedly due to the weak API (Application Programming Interface), which established a link between the app and its server. According to 9to5Google, OnePlus API is “hosted on open.oneplus.net — can be used by anyone with an access token”.

Next Story

Read more

A Nuclear War Between Indian And Pakistan May Cause A Global Disaster

Features- Nov 19, 2019

A Nuclear War Between Indian And Pakistan May Cause A Global Disaster

A nuclear war between India and Pakistan will result in the death of around 50 million to 125 million people

US Granted Huawei A 90-Day Extension On The Temporary License, For The Third Time

ICT News- Nov 19, 2019

US Granted Huawei A 90-Day Extension On The Temporary License, For The Third Time

This means US companies can continue doing business with Huawei for another while. Is it true that the US is going easy on the Chinese giant?

Microsoft Adds Google Apps Into Its Outlook.com Webmail Service

ICT News- Nov 21, 2019

Microsoft Adds Google Apps Into Its Outlook.com Webmail Service

With the new integration, users may soon be able to attach files from Google and Outlook interchangeably.

Top 'WTF' Scenes On Google Street View That Makes You Laugh Out Loud

Features- Nov 21, 2019

Top 'WTF' Scenes On Google Street View That Makes You Laugh Out Loud

With Google Street View, you might never know how your stuff will amaze people and end up virally on the Internet.

How To Use Spotify And Apple Music On Alexa-Enabled Devices

How To- Nov 21, 2019

How To Use Spotify And Apple Music On Alexa-Enabled Devices

You can also set Spotify or Apple Music as the default service for music streaming on any Alexa-supported devices

These AirPods Stickers Look So Realistic That You May Check To Ensure You Don't Drop Yours

ICT News- Nov 20, 2019

These AirPods Stickers Look So Realistic That You May Check To Ensure You Don't Drop Yours

This is merely a prank but the level of realistic these AirPods stickers are at makes it a pure genius prank idea