Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In with OpenID
Advertise on LowEndTalk.com

In this Discussion

OnePlus Magento Store - Haxed?

OnePlus Magento Store - Haxed?

MikePTMikePT Member, Provider
edited January 15 in General

MXroute.io - SMTP Relay Service, powered by MailChannels, fully automated, LET plans

MXroute.com - Email Hosting, powered by MailChannels

Comments

  • TomTom Member

    Probably. I cancelled my two cards I used there and got new ones coming in the post...

    I recommend Clouvider, Ramnode, HostUS

  • TomTom Member

    https://forums.oneplus.net/threads/credit-card-fraud.747206 just read through here... it's worrying

    I recommend Clouvider, Ramnode, HostUS

  • And this is why, when there is the option, you should you PayPal

  • @vovler said: And this is why, when there is the option, you should you PayPal

    They have expensive fees, but hell are they a lot more secure.

    Why not check my site (https://dawgy.pw) out? If you need to upload a few GIFs, give https://i.dawgy.pw a try <3

    Thanked by 1netomx
  • MikePTMikePT Member, Provider

    @Tom said: Probably. I cancelled my two cards I used there and got new ones coming in the post...

    Did you notice any weird charges?

    MXroute.io - SMTP Relay Service, powered by MailChannels, fully automated, LET plans

    MXroute.com - Email Hosting, powered by MailChannels

  • BlaZeBlaZe Member, Provider

    OnePlus? people really buy that shit? :|

    Samsung fanboy here XD

    India VPS with IPv6 | Taiwan VPS | Japan VPS (SoftBank DC) | South Korea VPS | Hong Kong VPS | Lithuania VPS | Serbia VPS with IPv6 | Poland VPS with IPv6

  • BitmapBitmap Member
    edited January 15

    @BlaZe said: OnePlus? people really buy that shit? :|

    Samsung fanboy here XD

    Yes? My OnePlus cost me ~£399; has dual-sim, perfectly capable camera for everyday use. has 128GB built-in storage. I'm happy.

    Thanked by 3MikePT Wolveix netomx
  • lionlion Member

    @BlaZe said: Samsung fanboy here XD

    Having fun with your Android 6?

  • TomTom Member

    @BlaZe said: OnePlus? people really buy that shit? :|

    Samsung fanboy here XD

    Ya, I really enjoy cheap shit that works great.

    @MikePT said:

    @Tom said: Probably. I cancelled my two cards I used there and got new ones coming in the post...

    Did you notice any weird charges?

    Nope, not yet. Better safe than sorry though.

    I recommend Clouvider, Ramnode, HostUS

    Thanked by 2MikePT coreflux
  • MikePTMikePT Member, Provider

    @BlaZe said: OnePlus? people really buy that shit? :|

    Samsung fanboy here XD

    Still have my OPO! It's been close to 4 years and runs extremely well!

    Tom said: Nope, not yet. Better safe than sorry though.

    For sure, I've updated the OP btw, looks like they're on it.

    MXroute.io - SMTP Relay Service, powered by MailChannels, fully automated, LET plans

    MXroute.com - Email Hosting, powered by MailChannels

  • BlaZeBlaZe Member, Provider

    @lion said: Having fun with your Android 6?

    You mean 7? yes I am :)

    I'm also enjoying the edge screen ;)

    I will also enjoy the "foldable screen" in 2019 :D

    India VPS with IPv6 | Taiwan VPS | Japan VPS (SoftBank DC) | South Korea VPS | Hong Kong VPS | Lithuania VPS | Serbia VPS with IPv6 | Poland VPS with IPv6

  • I have a OP3. Cant complain.

  • TomTom Member

    @BlaZe said:

    @lion said: Having fun with your Android 6?

    You mean 7? yes I am :)

    I'm also enjoying the edge screen ;)

    I will also enjoy the "foldable screen" in 2019 :D

    ... for 2x maybe 3x the price

    I recommend Clouvider, Ramnode, HostUS

    Thanked by 1Wolveix
  • MikePTMikePT Member, Provider

    @BlaZe said:

    @lion said: Having fun with your Android 6?

    You mean 7? yes I am :)

    I'm also enjoying the edge screen ;)

    I will also enjoy the "foldable screen" in 2019 :D

    Ye man, I'll have LineageOS 15 running @ OPO likely the next month, its a 4 year old cellphone, what about yours? <3

    MXroute.io - SMTP Relay Service, powered by MailChannels, fully automated, LET plans

    MXroute.com - Email Hosting, powered by MailChannels

    Thanked by 2pike Wolveix
  • Meanwhile, everyone is talking about their edge-to-edge displays. Sighs I knew I should've gotten the iPhone X instead of the 8.

    Why not check my site (https://dawgy.pw) out? If you need to upload a few GIFs, give https://i.dawgy.pw a try <3

    Thanked by 1netomx
  • deankdeank Member

    And I still use BB z10...

    The end is nigh. Why? Because the end is actually nigh.

    PMS : The way we are meant to go mad.

    Thanked by 1pike
  • pikepike Member

    @deank said: And I still use BB z10...

    I love my Q10.

  • deankdeank Member

    @pike said: I love my Q10.

    It's still a decent unit. For those who like actual keyboards, Q10 is still one of better units.

    I've had my z10 for around 4 years now. I am due an upgrade but ... I dislike the inability to change battery with these new phones now.

    The end is nigh. Why? Because the end is actually nigh.

    PMS : The way we are meant to go mad.

    Thanked by 1pike
  • RadiRadi Member, Provider
    edited January 15

    Read about it on a local mobile phones site. People are complaining about attempted-to-be-emptied credit cards. Not sure if its true.

    VikingLayer now offers VPS resource pools. Ask me about them today. :)

  • Thread derailed from Security Breach to "I LOVE MY PHONE" thread.

    My condolences who got their money stolen.

  • BlaZeBlaZe Member, Provider

    @MikePT said: Ye man, I'll have LineageOS 15 running @ OPO likely the next month, its a 4 year old cellphone, what about yours? <3

    I change my mobile every one or two years, so I meh! ¯_(ツ)_/¯

    India VPS with IPv6 | Taiwan VPS | Japan VPS (SoftBank DC) | South Korea VPS | Hong Kong VPS | Lithuania VPS | Serbia VPS with IPv6 | Poland VPS with IPv6

  • fLoofLoo Member
    edited January 16

    @yokowasis said: Thread derailed from Security Breach to "I LOVE MY PHONE" thread.

    My condolences who got their money stolen.

    I flagged all spam posts. This thread is about OPO-Store and the hack of it. P.S.: Fuck this BS. Reporting Threads results in a warning. Like what the actual fuck.

    Thanked by 1netomx
  • jarlandjarland Provider

    @fLoo said:

    @yokowasis said: Thread derailed from Security Breach to "I LOVE MY PHONE" thread.

    My condolences who got their money stolen.

    I flagged all spam posts. This thread is about OPO-Store and the hack of it.

    I'd like to be clear about what you did and how it impacts the mods/admins. I recognize that you didn't know that, but now you do, so please don't:

    https://drive.google.com/file/d/1NWUVSUALqi10d5yXTisPC4fjYTL9PnnW/view?usp=sharing

    I don't see a reason to be that much of a topic nazi on this thread. Can you tell me how the posts you reported are harmful?

  • fLoofLoo Member
    edited January 16

    @jarland: Can you please point out the rule i missed at /discussion/91400/lowendtalk-community-rules/p1 ? Didnt see anything regarding reporting a huge amount of threads.

    I reported on base of "Posting about things other than low end virtual machines/technology in places other than Offtopic. The category is there for a reason." So i see a rule i reported for but cant find the rule you warned me for. P.S.: Can we please discuss this via PM? Doesnt have to stay here also :-)

  • BlaZeBlaZe Member, Provider
    edited January 16

    I summon the great lord @WSS & @Nekki to write something valuable in this thread.

    Please respond to my prayers and give your "expert out-worldly opinion" on OPS (OnePlusShit) store security breach!

    (ง •̀_•́)ง

    India VPS with IPv6 | Taiwan VPS | Japan VPS (SoftBank DC) | South Korea VPS | Hong Kong VPS | Lithuania VPS | Serbia VPS with IPv6 | Poland VPS with IPv6

    Thanked by 1Frameworks
  • jarlandjarland Provider

    fLoo said: Can you please point out the rule i missed

    No need. You were unaware that you just flooded our view, now you are aware, and you've been told that we do not like that. The moment we have a rule for every possible way for someone to break something is the moment the rules cannot be reasonably read by new members, rendering their completeness ineffectual. This reality is communicated reasonably in the rules.

    In the future, if you'd like to report that many posts at once in a single thread, please make one report and ask us if we would clean up the thread. We don't mind doing the work, if we agree that there is purpose for doing it.

    fLoo said: I reported on base of "Posting about things other than low end virtual machines/technology in places other than Offtopic. The category is there for a reason."

    If we take "Posting about things other than low end virtual machines" then this whole thread violates the rules. That seems problematic. If we take the "/technology" part then not only does this thread not violate the rules, neither do the other discussions in this thread.

    Every single thread on LET has more than one discussion in it, one or more being off-topic (obviously or arguably). This is nothing that should surprise you or seem new to anyone who has been here any reasonable amount of time. We're not so strict that we go around cleaning up every single thread that has more than one discussion in it, that would annoy the members here and would accomplish nothing truly positive in the process.

    When it is important to clean up derailed threads is when the derail of the thread causes a problem. Take domain auctions for example. The trolling in those threads makes it difficult to find the previous bids, and could even be argued to be a tactic to discourage additional bids. That's a great opportunity for policing a thread for being derailed.

    What I would ask of you here is this: What harm do you see occurring here? Who are the victims and what is the justification for classifying them as such?

    Thanked by 2fLoo daxterfellowes
  • fLoofLoo Member

    I got your point. Thanks for claraifying, thought i missed a rule :-) I just found it frustrating to scroll through 20 posts of BS regarding "i like my phone more than BLA" instead of reading about the actual breach (i've bought an OPO via their website). Thats what made me pissed off.

    But yea, i'll calm a bit. Thanks for pointing out the intel to me, didnt know i "spam" your threads. Have a gud one.

    Thanked by 1jarland
  • jarlandjarland Provider

    No worries, don't think I'm upset or anything. You didn't know, now you do, problem solved :)

  • WSSWSS Member

    @BlaZe said: I summon the great lord @WSS & @Nekki to write something valuable in this thread.

    Please respond to my prayers and give your "expert out-worldly opinion" on OPS (OnePlusShit) store security breach!

    (ง •̀_•́)ง

    Still rocking my Nexus 5 I bought cheap because the screen was broken; This company really needs to be prosecuted if user billing information was stolen, as that information is NOT legal to keep stored.

    I won't be back until @bsdguy is released.

    Thanked by 1BlaZe
  • raindog308raindog308 Moderator
    edited January 16

    doghouch said: I knew I should've gotten the iPhone X instead of the 8.

    The iPhone X is slower to use than the iPhone 8. I could bought either and went with the 8 (plus).

    Yes, I know the processor is the same, but they're slower to use because FaceID is more finicky, and if it fails (some say way 1 time in 4), you're back to a passcode like it's 2014. TouchID (100% reliable in my experience and instant) is gone. If you want an iPhone X and don't like FaceID, your only other option is a passcode.

    Even if it was 100% reliable, FaceID is noticeably slower than TouchID, so...the X is slower to use.

    My Advice: VPS Advice

    For LET support, please click here.

  • NekkiNekki Member

    @raindog308 said: but they're slower to use because FaceID is more finicky, and if it fails (some say way 1 time in 4)

    Based in my wife’s experience been more reliable than Touch ID after a few months of use. I suppose mileage may vary, maybe the missus has a more Apple-friendly face?

  • Nekki said: Based in my wife’s experience been more reliable than Touch ID after a few months of use. I suppose mileage may vary, maybe the missus has a more Apple-friendly face?

    Or less scannable fingers. Are they often covered with sticky substances and/or blood?

    Anyway, that experience is at odds with numerous reports I read before buying. Maybe it's improved in recent iOS updates. Still, I hate it because TouchID met my needs perfectly.

    My Advice: VPS Advice

    For LET support, please click here.

    Thanked by 1netomx
  • @raindog308 said: If you want an iPhone X and don't like FaceID, your only other option is a passcode.

    Or no security mechanism at all. Should be just as secure as FaceID.

  • jarlandjarland Provider

    TheOnlyDK said: Should be just as secure as FaceID.

    No that's Android. Apple FaceID is 3D mapping, Android is photo recognition that last I checked used "you have to blink your eyes once" as it's only security measure to protect you from someone holding up your photo.

    Thanked by 1Aidan
  • AidanAidan Member

    jarland said: "you have to blink your eyes once"

    I can make a picture blink with 5cm of paper, scissors & a piece of ducktape.

    Thanked by 1jarland
  • deankdeank Member

    Ducktape should become a religion.

    The end is nigh. Why? Because the end is actually nigh.

    PMS : The way we are meant to go mad.

    Thanked by 1Aidan
  • WSSWSS Member

    @deank said: Ducktape should become a religion.

    Look at the scrub whose never worked on cars.

    I won't be back until @bsdguy is released.

  • TomTom Member

    Bumping this.

    https://forums.oneplus.net/threads/jan-19-update-an-update-on-credit-card-security.752415

    Mirroring:

    [Jan 19 Update]

    Hi all,

    We are deeply sorry to announce that we have indeed been attacked, and up to 40k users at oneplus.net may be affected by the incident. We have sent out an email to all possibly affected users.

    1. What happened

    One of our systems was attacked, and a malicious script was injected into the payment page code to sniff out credit card info while it was being entered. The malicious script operated intermittently, capturing and sending data directly from the user's browser. It has since been eliminated. We have quarantined the infected server and reinforced all relevant system structures.

    1. Who's affected Some users who entered their credit card info on oneplus.net between mid-November 2017 and January 11, 2018, may be affected. Credit card info (card numbers, expiry dates and security codes) entered at oneplus.net during this period may be compromised. Users who paid via a saved credit card should NOT be affected. Users who paid via the "Credit Card via PayPal" method should NOT be affected. Users who paid via PayPal should NOT be affected. We have contacted potentially affected users via email.

    2. What you can do We recommend that you check your card statements and report any charges you don’t recognize to your bank. They will help you initiate a chargeback and prevent any financial loss. For enquiries, please get in touch with our support team at https://oneplus.net/support. If you notice any potential system vulnerabilities, please report them to [email protected] This is a monitored inbox, but please note, we may not be able to respond to all reports.

    3. What we are doing

    We cannot apologize enough for letting something like this happen. We are eternally grateful to have such a vigilant and informed community, and it pains us to let you down.

    We are in contact with potentially affected customers. We are working with our providers and local authorities to better address the incident. We are also working with our current payment providers to implement a more secure credit card payment method, as well as conducting an in-depth security audit. All these measures will help us prevent such incidents from happening in the future.

    A big thank you to our forum user @superdutynick for bringing this incident to our attention!

    Sincerely, The OnePlus Team

    I recommend Clouvider, Ramnode, HostUS

  • WSSWSS Member

    I can't believe ANY payment gateway would let them self-host a checkout page, or will in the future. Visa will not be amused.

    I won't be back until @bsdguy is released.

    Thanked by 1Tom
  • MikePTMikePT Member, Provider

    @Tom said: Bumping this.

    https://forums.oneplus.net/threads/jan-19-update-an-update-on-credit-card-security.752415

    Mirroring:

    [Jan 19 Update]

    Hi all,

    We are deeply sorry to announce that we have indeed been attacked, and up to 40k users at oneplus.net may be affected by the incident. We have sent out an email to all possibly affected users.

    1. What happened

    One of our systems was attacked, and a malicious script was injected into the payment page code to sniff out credit card info while it was being entered. The malicious script operated intermittently, capturing and sending data directly from the user's browser. It has since been eliminated. We have quarantined the infected server and reinforced all relevant system structures.

    1. Who's affected Some users who entered their credit card info on oneplus.net between mid-November 2017 and January 11, 2018, may be affected. Credit card info (card numbers, expiry dates and security codes) entered at oneplus.net during this period may be compromised. Users who paid via a saved credit card should NOT be affected. Users who paid via the "Credit Card via PayPal" method should NOT be affected. Users who paid via PayPal should NOT be affected. We have contacted potentially affected users via email.

    2. What you can do We recommend that you check your card statements and report any charges you don’t recognize to your bank. They will help you initiate a chargeback and prevent any financial loss. For enquiries, please get in touch with our support team at https://oneplus.net/support. If you notice any potential system vulnerabilities, please report them to [email protected] This is a monitored inbox, but please note, we may not be able to respond to all reports.

    3. What we are doing

    We cannot apologize enough for letting something like this happen. We are eternally grateful to have such a vigilant and informed community, and it pains us to let you down.

    We are in contact with potentially affected customers. We are working with our providers and local authorities to better address the incident. We are also working with our current payment providers to implement a more secure credit card payment method, as well as conducting an in-depth security audit. All these measures will help us prevent such incidents from happening in the future.

    A big thank you to our forum user @superdutynick for bringing this incident to our attention!

    Sincerely, The OnePlus Team

    Wtf that is crazy! No emails from them at all yet.

    MXroute.io - SMTP Relay Service, powered by MailChannels, fully automated, LET plans

    MXroute.com - Email Hosting, powered by MailChannels

Sign In or Register to comment.