ShellCodeX
Tools β€’ Events β€’ News β€’ Insights
ShellCodeX Breach Report

MSI Data Breach

msi.com
Limited exposure
Verified breach
Accounts exposed 249,990
Breach date 07 Jul 2024
Added to tracker 17 Jan 2025
Data classes 5

What happened

In July 2024, MSI inadvertently exposed hundreds of thousands of customer records related to RMA claims that were subsequently found to be publicly accessible. The data included 250k unique email addresses alongside names, phone numbers, physical addresses and warranty claims. When contacted about the incident, MSI advised that "there is no evidence the information was ever accessed" and that "the security incident we had did not trigger state data breach notification obligations" due to the absence of "(social security number, driver's license number….etc)".

Exposed data

Email addresses Names Phone numbers Physical addresses Warranty claims

Recommended actions

  • Watch for targeted phishing emails referencing MSI β€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk β€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP