The Singapore-U.S. gaming company has responded to reports of 404,000 emails, keys, logins and other info for sale; it hasn’t finished dealing with a 2020 leak yet.
A post appeared on a hackers’ forum on July 8 offering information allegedly hacked from gaming hardware maker Razer.
“I have stolen the source code, encryption keys, database, backend access logins etc,” the hacker declared. The Straits Times said it saw a sample of users’ email addresses on offer that the hacker claimed was from a list that contained a total of 404,000 entries.
The hacker said, “[I] will be selling this one time” and set a price of $100,000 in privacy coin Monero (XRM), although lower offers would be considered.
Razer said in a tweet July 9 that it is investigating the potential breach. Website BleepingComputer claimed to have confirmed the validity of the email addresses exposed. It added that Razer had reset all user accounts and asked users to change passwords.
Razer did not respond immediately to an enquiry from Cointelegraph.
The news of the hack came as Razer continued to deal with the consequences of a data leak that took place in 2020. A Singaporean court heard an appeal July 10 by information technology vendor Capgemini of an award of $6.5 million granted to Razer in December.
As a result of the 2020 leak, personal details of around 100,000 users were exposed after a Capgemini programmer allegedly compromised a line of code, leaving the data vulnerable between June and September 2020. The leak was discovered in September 2020 by a security consultant.
Razer was founded in 2005 and has offices in Singapore and the United States. It launched digital currencies for rewards and credits in 2017 and revamped the offering the following year, adding mining capabilities. Some of the data allegedly stolen in the July 8 hack reportedly related to the old version of the system.