Another day, another data breach – This time, unsuspecting customers of a gaming controller manufacturer have their privacy exposed online. In all started when a research team from Comparitech revealed the details of a new data breach involving SCUF Gaming – a manufacturer of gaming controllers and other accessories.
Numbering 1.1 million records, the database which was left completely exposed to the public included sensitive details such as customer names, contact information, payment information and employee records among others.
According to the research team, the database was initially indexed by the Binary Edge search engine on April 2nd. Then on April 3, 2020, they found the database after it had been left exposed for not more than 2 days.
See: 201 million US demographic, personal records leaked online
Thereupon, they immediately reported the matter to SCUF who took action within a pacy 2 hours. However, by then it had been too late. The database had already been downloaded by malicious actors who left a ransom message along the lines of:
Your Database is downloaded and backed up on our secured servers. To recover your lost data, Send 0.3 BTC to our BitCoin Address and Contact us by eMail.
Here is a full preview of the ransomware note:
Screenshot credit: Comparitech
This means that all of the customer data contained within the database could be misused to launch gaming controllers manufacturer exposed customer records
