The Verge

Razer accidentally leaked the personal information for over 100,000 gamers, report says

The Verge logo The Verge 14/09/2020 19:07:17 Taylor Lyles
© Photo by Amelia Holowaty Krales / The Verge

Razer accidentally exposed over 100,000 gamers' personal information for close to a month, according to a new report.

Security researcher Volodymyr Diachenko discovered that customer data on Razer's website was made publicly available on August 18th because of a server misconfiguration. A redacted sample pictured below shows records of orders made on the company's digital store, exposing personal information including email and mailing addresses, the type of product ordered, and phone numbers. Credit card information was not included.

a screenshot of a cell phone: No credit card information, but customers' email and mailing addresses were compromised. © Image: Volodymyr DiachenkoNo credit card information, but customers' email and mailing addresses were compromised.

After discovering the misconfiguration online, Diachenko says he reached out to Razer several times over the span of three weeks before receiving a reply. In a statement sent to Diachenko, the gaming hardware manufacturer acknowledged the server misconfiguration and that the data leak potentially exposed personal information like full names, phone numbers, and shipping addresses for customers. Razer says that "no other sensitive data" such as payment methods were leaked and that it fixed the misconfiguration on September 9th. Razer confirmed the issue in an email to The Verge and said that customers that have any questions about the leak can reach out to DPO@razer.com.

Even though no sensitive payment information was exposed, personal information, including email addresses, can be used for phishing campaigns to obtain further information such as passwords for online accounts or payment details.

Update September 14th, 1:07PM ET: Added a statement from Razer to The Verge.

lundi 14 septembre 2020 22:07:17 Categories: The Verge

ShareButton
ShareButton
ShareButton
  • RSS

Suomi sisu kantaa
NorpaNet Beta 1.1.0.18818 - Firebird 5.0 LI-V6.3.2.1497

TetraSys Oy.

TetraSys Oy.