Gaming giant Razer has apparently suffered a data breach that has seen company and customer data up for sale.
A post uploaded to a hacker forum offered the stolen data from Razer’s website for $100,000 of Monero cryptocurrency. The data reportedly includes encryption keys, database and login credentials for Razer.com and its products.
A company spokesperson told BleepingComputer that Razer is “still in the midst of investigations.” The spokesperson said that the company “immediately conducted a thorough review of all Razer’s websites and have taken all necessary steps to secure our platforms.”
The forum poster also provided screenshots as evidence of the breach, which show, among other things, lists of files, email addresses, source code for anti-cheat systems in online games, and Razer Gold balances.
This isn’t the first time the gaming company’s data has been vulnerable. In 2020, a researcher found that a Razer database containing users’ personally identifiable information (PII), including email and physical addresses, was publicly accessible and could have been seen by anyone.
The data in this most recent exposure appears to be more up to date, suggesting that the two incidents are not linked.
Razer has not yet said whether any customer data has been misused as a result of the breach. However, the company has advised customers to change their passwords and be on the lookout for phishing emails.
Once investigations have concluded, Razer said it will report the matter to the relevant authorities.
What to do if you’re a Razer customer
If you’re a Razer customer, here are some steps you can take to protect yourself:
Change your password for your Razer account.
Be on the lookout for phishing emails that may contain malicious links or attachments.
Monitor your credit report for any unauthorized activity.
If you have any concerns, you can contact Razer customer support.