OnePlus is infamous for security breaches, the first of which happened in January of 2018 compromising credit cards of 40,000 customers. More recently, the second breach, just occurred last month exposing names, emails, and shipping addresses of customers. Thus, to ramp up its security measures, OnePlus has partnered with HackerOne, a well-known security platform, for a Bug Bounty Program.
The OnePlus Bug Bounty Program will award rewards ranging from $50 to $7000 depending on the potential of the threat. For this purpose, the company has started a Security Response Center which allows security researches to submit potential threats to the OnePlus Security page, OnePlus Community or OnePlus applications.
However, this program will run initially exclusively on HackerOne and only selected security researchers will be eligible for the same. This program will be open to the general public only in late 2020. Anyways, we appreciate the brand for accepting their mistakes and finding new ways to improve their security.
Security breaches are a nightmare for any organization and hence firms are rightly very paranoid about it as it can result in immediate user backlash. Although the company was affected nearly two years back, it does not seem to have improved its security to counter attackers yet as it once again became a victim of a cyber attack. Thus, following the recent incident, the company has announced a Bug Bounty Program in partnership with HackerOne.