OnePlus Devices Still Transmitting Unencrypted IMEI

Toward the beginning of July, a XDA Forums part found that OnePlus' gadgets were sending the gadget IMEI back to the upgrade server to request a redesigned variant of the working framework. At the time, OnePlus were advised of this security issue and educated their bolster gatherings that the glitch had been fixed. That obviously ought to be that, however OnePlus' record for programming overhauls and fixes has been sketchy and because of this, individuals from XDA Forums chose to run another test. The most recent test utilizing Oxygen OS 3.2.4 demonstrated that the gadget is as yet transmitting the IMEI data decoded to the upgrade server. 

The IMEI is the number that every last 'telephone ought to utilize to distinguish the gadget. The IMEI can be discovered covered in the Settings menus of the gadget or by dialing *#06# on the keypad. With the gadget transmitting the IMEI to the server, it implies that if you or your gadget choose to seek out the OnePlus' redesign server to check whether there's an upgrade in progress, anyone listening on the association could catch the IMEI code. There are a great deal of variables in the above: you would should be associated with the Internet by means of an open system, for example, an open Wi-Fi hotspot. Some individual would need to listen into the association between your gadget and the Internet, and on the off chance that you weren't staying there checking for a product upgrade, your gadget would happen to make the solicitation right then and there in time. Once caught, the IMEI number might be utilized to give a stolen or blackmarket gadget a personality. This could bring about your IMEI being boycotted (and along these lines not taking a shot at all systems over the world) and this, to put it obtusely, would be an agony to determine. One would need to contact telecom second and third line bolster groups with adequate confirmation that the gadget is not stolen. 

It is far-fetched that a spilled IMEI number could be blocked at the right minute and there are solid contentions over utilizing an open or open Wi-Fi hotspot without a VPN in any case, however the greater issues here are OnePlus' evident indifference with clients' protection. The organization guaranteed to have settled the issue yet in spite of a few upgrades since, it remains. It is conceivable that OnePlus have the issue determined and it will be fused into the following programming redesign, or maybe the message hasn't achieved the fundamental programming engineer however it is accepted to have been settled. In any case, XDA Forums is attempting to tell OnePlus that the issue is as yet extraordinary and we will tell you what comes to pass.