Getting your personal data leaked is one of the scariest things that could happen.
Just like how Grab recently had 21,000 of their user data exposed.
They were subsequently fined S$10,000.
Today, we have an even bigger data leak incident that has allegedly happened.
And the scale is massive.
Razer’s Personal Data Leak
On 18 Aug, Security researcher Volodymyr Diachenko discovered that customer data on Razer’s website was made publicly available.
Apparently, it was due to a server miscommunication.
He proceeded to share these discoveries on a LinkedIn post.
In his post, a redacted code saw thousands of personal data being shared online.
And did I say thousands? I meant a total of 100,000 customer’s data being exposed.
This information included email and mailing addresses, the type of product ordered, and phone numbers.
Luckily, no credit card numbers were revealed.
Diachenko immediately contacted Razer upon discovering this mistake.
However, the company only responded after three weeks despite reaching out several times.
Razer Responds
In an update made to his post, Diachenko added in Razer’s action to the data leak.
“We were made aware by Mr Volodymyr of a server misconfiguration that potentially exposed order details, customer and shipping information. No other sensitive data such as credit card numbers or passwords were exposed.”
They also noted that the server has been fixed as of 9 September.
“We would like to thank you, sincerely apologize for the lapse and have taken all necessary steps to fix the issue, as well as conduct a thorough review of our IT security and systems. We remain committed to ensuring the digital safety and security of all our customers.”
Razer Customers to take Note
Diacheko’s post warned of the possible cyber attacks on Razer’s affected customers.
He says that criminals could mask themselves as Razer to try and phish personal information from them.
Customers should also double-check any emails or texts received.
Advertisements
“Malicious emails or messages might encourage victims to click on links to fake login pages or download malware onto their device.”
He ends that section by saying Razer customers could be at risk of fraud and targeted phishing attacks perpetrated by criminals who might have accessed the data.
If you have any questions regarding the leak, you can contact Razer at [email protected]
Even for those not affected by this, let’s do our due diligence to keep our data protected.
If you receive messages from ‘known’ companies that look suspicious, don’t reply to them.
Advertisements
Double-check with the company themselves just to be safe and never give your personal information away unless you’re sure.