Razer Inc.—Razer exposed personal data of approximately 100,000 customers through misconfigured Elasticsearch server

Sep 9, 2020

In 2020, security researcher Volodymyr Diachenko discovered that Razer had left an Elasticsearch server misconfigured and publicly accessible, exposing the personal information of approximately 100,000 customers. Leaked data included full names, email addresses, phone numbers, customer IDs, order numbers, and billing/shipping addresses. Razer initially took weeks to respond before securing the server.

Scoring Impact

Topic	Direction	Relevance	Contribution
User Privacy	-against	primary	-1.00
Overall incident score =			-0.286

Score = avg(topic contributions) × significance (medium ×1) × confidence (0.57)× agency (negligent ×0.5)

Evidence (1 signal)

Confirms Legal Action Sep 9, 2020 documented

Security researcher discovered Razer's Elasticsearch server exposing 100K+ customer records

Volodymyr Diachenko discovered an unprotected Elasticsearch server belonging to Razer, exposing personal data of approximately 100,000 customers including full names, emails, phone numbers, and order details. Razer took several weeks to respond.

ZDNet

Related: Same Topics

Mustafa Suleyman · Claimed web content is 'freeware' for AI training, contradicting copyright law

Jun 28, 2024

Inrupt · Deployed Solid data pods for 6 million Flanders citizens and partnered with NHS, BBC, NatWest for data sovereignty

Dec 1, 2021

LY Corporation · Suffered major data breach affecting 520,000 users due to shared infrastructure with Korean parent

Oct 9, 2023

Aravind Srinivas · Refused to define plagiarism when asked, claimed facts cannot be owned

Oct 30, 2024

Tim Cook · Delivered keynote speech declaring privacy a fundamental human right and calling for federal privacy legislation

Oct 24, 2018