Razer suffers a data leak that exposes information of approximately 100,000 individuals who purchased items from Razer’s online store.
Razer suffers a data leak that exposes information of approximately 100,000 individuals who purchased items from Razer’s online store.
Razer
Razer is a Singaporean-American gaming hardware manufacturing company known to be the world leader in high-performance gaming hardware, software and systems. Razer's products generally include gaming laptops, gaming tablets, and PC peripherals such as mice, audio devices, keyboards, mouse mats, and gamepads.
Security Researcher Bob Diachenkospotted an unsecured database that exposed the data of approximately 100,000 individuals who purchased items from Razer’s online store.
Information exposed
The exposed information included customer’s name, email address, contact number, order numbers, order details, billing and shipping address.
Diachenko immediately notified the company through their support channel on the exposure, to secure the exposed database.
“The exact number of affected customers is yet to be assessed, as originally it was part of a large log chunk stored on a company’s Elasticsearch cluster misconfigured for public access since August 18th, 2020 and indexed by public search engines,” he wrote in a post on LinkedIn.
Based on the number of the emails exposed, Diachenko estimates the total number of affected customers to be around 100K,” he added.
“We would like to thank you, sincerely apologize for the lapse and have taken all necessary steps to fix the issue as well as to conduct a thorough review of our IT security and systems. We remain committed to ensuring the digital safety and security of all our customers, ” reads a statement from the vendor.
The attack could lead to spear-phishing attacks, where the threat actors could obtain information, including passwords and financial data.
Individuals who have purchased products from Razer’s online store must be vigilant about any emails that state they are from the gaming firm. In case if you receive any email claiming to be from Razer, then log in only at razor.com and not at other sites.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?