OnePlus has been hit by a data breach that has leaked customers’ names, email addresses, contact numbers and postal addresses. The company says that payment information, passwords and OnePlus account information was not stolen.

Not everyone with a OnePlus order account has been affected. In an online FAQ post, OnePlus said that only “certain orders” have been breached, but declined to say how many or within what period of time.

Affected customers were informed by email prior to OnePlus posting on its website. The company claims that because the information taken is not to do with payments, the extent of the consequences will be phishing and scam emails.

We’d imagine if you’ve bought a recent OnePlus 7T or 7T Pro you’ll have been affected – check your inbox.

It’s not a great look for OnePlus, with this its third data breach in two years following credit card information gathered by hackers around the time of the OnePlus 5T launch and the harvesting of emails possible in its Shot On OnePlus feature. 

OnePlus claims it is “partnering with a world-renowned security platform next month”, which seems like a year too late to us. Its post also doesn’t suggest anything users can do to their accounts as passwords do not appear to have been stolen. We’d advise changing them anyway.