Razer Leaks Personal Information of Over 100,000 Gamers

AleksandarK · Sep 15, 2020

Security researcher Volodymyr Diachenko has discovered a security breach over at hardware peripheral manufacturer Razer. Reportedly, Mr. Volodymyr found a badly configured Elasticsearch cluster filled with over 100,000 data entries of Razer customers. That means that anywhere from customer email, physical address and phone number have been exposed to the public, making this leak potentially dangerous. What is even more dangerous is that the Elasticsearch cluster was not only exposed to the internet, however, it was also indexed by a search engine, making the data more easily searchable and discoverable. This is a pure admin fail, no hacking was required, they just left the front door open. Razer issued an official response to the incident below:

Razer said:
We were made aware by Mr. Volodymyr of a server misconfiguration that potentially exposed order details, customer and shipping information. No other sensitive data such as credit card numbers or passwords was exposed.
The server misconfiguration has been fixed on 9 Sept, prior to the lapse being made public.
We would like to thank you, sincerely apologize for the lapse and have taken all necessary steps to fix the issue as well as conduct a thorough review of our IT security and systems. We remain committed to ensure the digital safety and security of all our customers.

Above you can see example of indexed customer information. Razer has also said that concerned customers can reach out to the DPO@razer.com email address and get help form Razer's employees.

View at TechPowerUp Main Site

8BitZ80 · Sep 15, 2020

Yeah I'd be pretty pissed if my contact details were in there. I had my mobile number leak into the wrong hands about five years ago and telemarketers were calling my mobile number twice a week for over a year. That seriously grates on your nerves when there's no way to stop it unless you get a new number. Mobile and email are just as sensitive as credit card details.

my_name_is_earl · Sep 15, 2020

US govt require company to keep and maintain customer's data. Sound really good now don't it? /sar

Vayra86 · Sep 15, 2020

WELL PLAYED. Keep at it people. Keep using login peripherals. Go go! Its totally not an issue whatsoever.

If you are an EU citizen... immediately file an officlal GDPR complaint. Nail those fuckers down. Its time to start defending your personal data no matter who keeps it for you.

freeagent · Sep 15, 2020

There won’t be consequences because no fucks are given. Misconfigured server? Really?? What kind of fisher price operation do they have over there? You get what you pay for..

AsRock · Sep 15, 2020

freeagent said:
There won’t be consequences because no fucks are given. Misconfigured server? Really?? What kind of fisher price operation do they have over there? You get what you pay for..

Razer are pretty expensive so your not actually getting what you payed for.

Assimilator · Sep 15, 2020

Vayra86 said:
WELL PLAYED. Keep at it people. Keep using login peripherals. Go go! Its totally not an issue whatsoever.

If you are an EU citizen... immediately file an officlal GDPR complaint. Nail those fuckers down. Its time to start defending your personal data no matter who keeps it for you.

This, absolutely this.

Unless companies are hit in the only place that matters to them (bank balance), they will never fix their shit. "Misconfigured server" is simply lawyer-speak for "didn't bother to do due diligence".

bonehead123 · Sep 15, 2020

This only serves to take my dislike of Razer to a new level....

shit products made by a shit-4-brains company that has shit-4-brains people working in their data centers...

Tinchouru1 · Sep 15, 2020

Whenever there would be the application, I would open the microphone when I don't have rayzer headphone peripherals, it always seemed strange to me

Bjorn_Of_Iceland · Sep 15, 2020

Main reason why I do not give away real information nor use my actual email whenever I register in these kind of establishments :'D.

yotano211 · Sep 15, 2020

I use a junk email for anything like this but I dont sign up for everything that tells me too.

moproblems99 · Sep 15, 2020

Bjorn_Of_Iceland said:
Main reason why I do not give away real information nor use my actual email whenever I register in these kind of establishments :'D.

yotano211 said:
I use a junk email for anything like this but I dont sign up for everything that tells me too.

You guys use junk emails when you place orders? That's rage.

bug · Sep 15, 2020

Vayra86 said:
WELL PLAYED. Keep at it people. Keep using login peripherals. Go go! Its totally not an issue whatsoever.

If you are an EU citizen... immediately file an official GDPR complaint. Nail those fuckers down. Its time to start defending your personal data no matter who keeps it for you.

Amen to that.
I've always said login peripherals is just dumb. Only to be greeted with "it's not so bad" or "but the software is nice". I went with a mouse and keyboard that have on-board memory instead, so that after you configure them you can forget about custom software altogether.

Hatrix · Sep 16, 2020

you have to use Razer software in order to turn on the pretty lights to your liking :slap:

Vayra86 · Sep 16, 2020

bug said:
Amen to that.
I've always said login peripherals is just dumb. Only to be greeted with "it's not so bad" or "but the software is nice". I went with a mouse and keyboard that have on-board memory instead, so that after you configure them you can forget about custom software altogether.

Sleeping under a bridge isn't so bad either, would be my reply to that lol. Its the same as the 'I have nothing to hide' crowd. Stupidity at its finest, there are no others words for it. Or just a brutal lack of experience.

InhaleOblivion · Sep 16, 2020

*Looks at current hardware*. Yep nothing to see here. Left this company alone eons ago. Incidents like this remind me why.

remixedcat · Sep 18, 2020

well shit.. was about to go with them for thier linux compatibility to bind hotkeys but immma nope outta dis...

Not gonna get cut by this razer.. I got claws!!!

kn00tcn · Sep 18, 2020

Vayra86 said:
WELL PLAYED. Keep at it people. Keep using login peripherals. Go go! Its totally not an issue whatsoever.

If you are an EU citizen... immediately file an officlal GDPR complaint. Nail those fuckers down. Its time to start defending your personal data no matter who keeps it for you.

it's time to start reading what was leaked, which appears to be customer ORDERS for all of their products (including laptops, etc), who cares about a throwaway email login that has no info... those are some strong words that better have been said to nvidia & microsoft as they aggressively pushed for the same thing in the past

remixedcat said:
well shit.. was about to go with them for thier linux compatibility to bind hotkeys but immma nope outta dis...

Not gonna get cut by this razer.. I got claws!!!

what's it matter if you buy from a third party store & use linux? most companies have had leaks like this

Vayra86 · Sep 18, 2020

kn00tcn said:
it's time to start reading what was leaked, which appears to be customer ORDERS for all of their products (including laptops, etc), who cares about a throwaway email login that has no info... those are some strong words that better have been said to nvidia & microsoft as they aggressively pushed for the same thing in the past

what's it matter if you buy from a third party store & use linux? most companies have had leaks like this

If you are bringing counter points to everything I say maybe you ought to start thinking clearly. My reading is fine thx. The article specifically states personal information. Registered products can and have been linked to personal data because Razer has an ecosystem to make people do that. NONE of the companies I buy gear from require this of me nor do they have that same sort of info provided with my purchase.

WTF are you even on about?!
And yes, mandatory login for Nvidia et al is just as bad, I dont recall ever saying otherwise? Small difference though, neither MS or Nvidia habe had data leaks like this. And they do this a whole lot longer especially MS.

Find someone else to bother with your naiviety

micropage7 · Sep 18, 2020

AsRock said:
Razer are pretty expensive so your not actually getting what you payed for.

they pay for the brand only, security not included :roll:

and yeah i always try something that need login especially when related to personal data since if they make a little fault there it will be a big problem

System Name	Little Girl
Processor	Intel Q9650 @ 3.6GHz
Motherboard	Gigabyte x48 DQ6
Cooling	liquid cooling
Memory	4gb (2x2) OCZ DDR2 PC2-9200
Video Card(s)	Gigabyte HD6950 unlock to Asus 6970 specs
Storage	Crucial CT128M225 128gb SSD
Display(s)	Acer 27" LCD @ 2048x1152
Case	DIY (spit & glue, ducktape, cardboard)
Audio Device(s)	On-board HD Audio
Power Supply	ABS Tagan 850w
Software	Win7 64bit

System Name	Tiny the White Yeti
Processor	7800X3D
Motherboard	MSI MAG Mortar b650m wifi
Cooling	CPU: Thermalright Peerless Assassin / Case: Phanteks T30-120 x3
Memory	32GB Corsair Vengeance 30CL6000
Video Card(s)	ASRock RX7900XT Phantom Gaming
Storage	Lexar NM790 4TB + Samsung 850 EVO 1TB + Samsung 980 1TB + Crucial BX100 250GB
Display(s)	Gigabyte G34QWC (3440x1440)
Case	Lian Li A3 mATX White
Audio Device(s)	Harman Kardon AVR137 + 2.1
Power Supply	EVGA Supernova G2 750W
Mouse	Steelseries Aerox 5
Keyboard	Lenovo Thinkpad Trackpoint II
VR HMD	HD 420 - Green Edition ;)
Software	W11 IoT Enterprise LTSC
Benchmark Scores	Over 9000

Processor	AMD R7 5800X3D
Motherboard	Asus Crosshair VIII Dark Hero
Cooling	Thermalright Frozen Edge 360, 3x TL-B12 V2, 2x TL-B12 V1
Memory	2x8 G.Skill Trident Z Royal 3200C14, 2x8GB G.Skill Trident Z Black and White 3200 C14
Video Card(s)	Zotac 4070 Ti Trinity OC
Storage	WD SN850 1TB, SN850X 2TB, SN770 1TB
Display(s)	LG 50UP7100
Case	Fractal Torrent Compact
Audio Device(s)	JBL Bar 700
Power Supply	Seasonic Vertex GX-1000, Monster HDP1800
Mouse	Logitech G502 Hero
Keyboard	Logitech G213
VR HMD	Oculus 3
Software	Yes
Benchmark Scores	Yes

System Name	Firelance.
Processor	Threadripper 3960X
Motherboard	ROG Strix TRX40-E Gaming
Cooling	IceGem 360 + 6x Arctic Cooling P12
Memory	8x 16GB Patriot Viper DDR4-3200 CL16
Video Card(s)	MSI GeForce RTX 4060 Ti Ventus 2X OC
Storage	2TB WD SN850X (boot), 4TB Crucial P3 (data)
Display(s)	3x AOC Q32E2N (32" 2560x1440 75Hz)
Case	Enthoo Pro II Server Edition (Closed Panel) + 6 fans
Power Supply	Fractal Design Ion+ 2 Platinum 760W
Mouse	Logitech G602
Keyboard	Razer Pro Type Ultra
Software	Windows 10 Professional x64

System Name	The Little One
Processor	i5-11320H @4.4GHZ
Motherboard	AZW SEI
Cooling	Fan w/heat pipes + side & rear vents
Memory	64GB Crucial DDR4-3200 (2x 32GB)
Video Card(s)	Iris XE
Storage	WD Black SN850X 8TB m.2, Seagate 2TB SSD + SN850 8TB x2 in an external enclosure
Display(s)	2x Samsung 43" & 2x 32"
Case	Practically identical to a mac mini, just purrtier in slate blue, & with 3x usb ports on the front !
Audio Device(s)	Yamaha ATS-1060 Bluetooth Soundbar & Subwoofer
Power Supply	65w brick
Mouse	Logitech MX Master 2
Keyboard	Logitech G613 mechanical wireless
VR HMD	Whahdatiz ???
Software	Windows 10 pro, with all the unnecessary background shitzu turned OFF !
Benchmark Scores	PDQ

Razer Leaks Personal Information of Over 100,000 Gamers

AleksandarK

News Editor

8BitZ80

my_name_is_earl

Vayra86

freeagent

Moderator

AsRock

TPU addict

Assimilator

bonehead123

Tinchouru1

New Member

Bjorn_Of_Iceland

yotano211

moproblems99

bug

Hatrix

Vayra86

InhaleOblivion

remixedcat

kn00tcn

Vayra86

micropage7

System Name	Thakk
Processor	i7 6700k @ 4.5Ghz
Motherboard	Gigabyte G1 Z170N ITX
Cooling	H55 AIO
Memory	32GB DDR4 3100 c16
Video Card(s)	Zotac RTX3080 Trinity
Storage	Corsair Force GT 120GB SSD / Intel 250GB SSD / Samsung Pro 512 SSD / 3TB Seagate SV32
Display(s)	Acer Predator X34 100hz IPS Gsync / HTC Vive
Case	QBX
Audio Device(s)	Realtek ALC1150 > Creative Gigaworks T40 > AKG Q701
Power Supply	Corsair SF600
Mouse	Logitech G900
Keyboard	Ducky Shine TKL MX Blue + Vortex PBT Doubleshots
Software	Windows 10 64bit
Benchmark Scores	http://www.3dmark.com/fs/12108888

System Name	MSI GP76
Processor	intel i7 11800h
Cooling	2 laptop fans
Memory	32gb of 3000mhz DDR4
Video Card(s)	Nvidia 3070
Storage	x2 PNY 8tb cs2130 m.2 SSD--16tb of space
Display(s)	17.3" IPS 1920x1080 240Hz
Power Supply	280w laptop power supply
Mouse	Logitech m705
Keyboard	laptop keyboard
Software	lots of movies and Windows 10 with win 7 shell
Benchmark Scores	Good enough for me

System Name	Wut?
Processor	3900X
Motherboard	ASRock Taichi X570
Cooling	Water
Memory	32GB GSkill CL16 3600mhz
Video Card(s)	Vega 56
Storage	2 x AData XPG 8200 Pro 1TB
Display(s)	3440 x 1440
Case	Thermaltake Tower 900
Power Supply	Seasonic Prime Ultra Platinum

Processor	Intel i5-12600k
Motherboard	Asus H670 TUF
Cooling	Arctic Freezer 34
Memory	2x16GB DDR4 3600 G.Skill Ripjaws V
Video Card(s)	EVGA GTX 1060 SC
Storage	500GB Samsung 970 EVO, 500GB Samsung 850 EVO, 1TB Crucial MX300 and 2TB Crucial MX500
Display(s)	Dell U3219Q + HP ZR24w
Case	Raijintek Thetis
Audio Device(s)	Audioquest Dragonfly Red :D
Power Supply	Seasonic 620W M12
Mouse	Logitech G502 Proteus Core
Keyboard	G.Skill KM780R
Software	Arch Linux + Win10

Processor	Intel I9-9900K
Motherboard	Gigabyte Z390 Aorus Master
Cooling	NZXT Kraken x62v2
Memory	4x8GB G.Skill Flare X 3200mhz CL14
Video Card(s)	Zotac RTX 2080Ti AMP + Alphacool Eiswolf 240 GPX Pro
Storage	ADATA 1TB XPG SX8200 Pro + Intel 16GB Optane Memory 16GB M.2 + WD Blue 4TB
Display(s)	Samsung CRG9 32:9 + Samsung S34J55W 21:9 + Samsung S24B300 16:9
Case	Fractal Design Define R6 USB-C
Power Supply	Corsair RM850x 850W Gold
Mouse	Razer Viper Mini
Keyboard	Razer Ornata Chroma
Software	Windows 10 Pro

System Name	Mass Effect/Lost Ark
Processor	AMD Ryzen 5 5600X/AMD Ryzen 7 2700X
Motherboard	Asus ROG Strix X470-F Gaming/Asus ROG Strix B450-F Gaming II
Cooling	Noctua NH-D15S/AMD Wraith Max
Memory	G.Skill Ripjaws V Series 16GB (2x8GB) DDR4-3200/Corsair Vengeance RGB Pro 16GB (2x8GB) DDR4-3200
Video Card(s)	MSI AMD Radeon RX 6750 XT Mech 2x/MSI AMD Radeon RX 5700 XT Mech OC
Storage	Samsung 860 Evo 500GB 2.5" SSDs x2, WD Black 4TB 3.5" 7200RPM, Samsung 970 EVO 500GB 1TB NVME M.2
Display(s)	Acer XF270H 1920x1080p @ 144Hz
Case	Thermaltake Core P3 TG ATX Mid Tower/CoolerMaster MasterCase Pro 5
Audio Device(s)	SteelSeries Actis Nova 3 RGB
Power Supply	Cooler Master V850 80+ Gold/Corsair CX650M 80+ Bronze
Mouse	Thermaltake Level 10 M/Logitech G502
Keyboard	Corsair K70 RGB MK.2 Wired Gaming Edition/Steelseries Apex 3 RGB
Software	Windows 10 Pro OEM 64bit/Ubuntu 22.04.1 64bit

System Name	RemixedBeast-NX
Processor	Intel Xeon E5-2690 @ 2.9Ghz (8C/16T)
Motherboard	Dell Inc. 08HPGT (CPU 1)
Cooling	Dell Standard
Memory	24GB ECC
Video Card(s)	Gigabyte Nvidia RTX2060 6GB
Storage	2TB Samsung 860 EVO SSD//2TB WD Black HDD
Display(s)	Samsung SyncMaster P2350 23in @ 1920x1080 + Dell E2013H 20 in @1600x900
Case	Dell Precision T3600 Chassis
Audio Device(s)	Beyerdynamic DT770 Pro 80 // Fiio E7 Amp/DAC
Power Supply	630w Dell T3600 PSU
Mouse	Logitech G700s/G502
Keyboard	Logitech K740
Software	Linux Mint 20
Benchmark Scores	Network: APs: Cisco Meraki MR32, Ubiquiti Unifi AP-AC-LR and Lite Router/Sw:Meraki MX64 MS220-8P

System Name	micropage7
Processor	Intel Xeon X3470
Motherboard	Gigabyte Technology Co. Ltd. P55A-UD3R (Socket 1156)
Cooling	Enermax ETS-T40F
Memory	Samsung 8.00GB Dual-Channel DDR3
Video Card(s)	NVIDIA Quadro FX 1800
Storage	V-GEN03AS18EU120GB, Seagate 2 x 1TB and Seagate 4TB
Display(s)	Samsung 21 inch LCD Wide Screen
Case	Icute Super 18
Audio Device(s)	Auzentech X-Fi Forte
Power Supply	Silverstone 600 Watt
Mouse	Logitech G502
Keyboard	Sades Excalibur + Taihao keycaps
Software	Win 7 64-bit
Benchmark Scores	Classified