Razer Leaked Personal Information of More Than Hundred Thousands Customers
| Razer Leaked Personal Information of More Than Hundred Thousands Customers | |
|---|---|
| Short Title | Gaming Hardware Company Razer Accidentally Leaks Customer Personal Information |
| Location | Global |
| Date | August 2020 |
| Solove Harm | Insecurity |
| Information | Contact, Transactional, Identifying |
| Threat Actors | Razer |
| Individuals | |
| Affected | Razer customers |
| High Risk Groups | |
| Tangible Harms | |
A gaming hardware company Razer was found to have accidentally leaked personal information of about 100 thousands of customers.
Description
In August 2020 a security researcher discovered a misconfigured search cluster, owned by gaming hardware vendor Razer, exposing customers' personal information. The cluster contained roughly 100,000 users' data
The cluster contained records of customer orders and included information such as item purchased, customer email, customer (physical) address, phone number, and so forth—basically, everything one would expect to see from a credit card transaction, although not the credit card numbers themselves.
This is an example of Insecurity. The researcher reported the misconfigured cluster to Razer immediately, but the report bounced from support rep to support rep for over three weeks before being fixed.
Breakdown
Threat: Razer being careless with customers personal information and not protecting it from leaks
At-Risk group: Razer customers
Harm: Insecurity
Secondary Consequences: not known