Windows 10's security was thwarted yet again, this time by SteelSeries peripherals

News
By published

It's just not Razer products that can bypass Windows 10 security protocols.

Steel Series gaming mouse in front of Windows 10 background
(Image credit: SteelSeries)

Recently, a white hat hacker discovered an odd exploit which allows you to give yourself full admin rights on a Windows 10 PC just by plugging in a Razer mouse and installing Razer Synapse. It turns out it's not just Razer products that can do this, though.  

Your next upgrade

(Image credit: Future)

Best CPU for gaming: the top chips from Intel and AMD
Best graphics card: your perfect pixel-pusher awaits
Best SSD for gaming: get into the game ahead of the rest

Twitter user @zux0x3a discovered a similar exploit with SteelSeries headsets, mice, and keyboards. Like with the Razer products, the problem lies with the hardware's proprietary software that gives itself system-wide privileges without asking for the system administrator's permission. Theoretically, someone could go to your workplace PC when you're not around and plug in the dongle for a wireless Razer or SteelSeries mouse, install Synapse or SteelSeriesGG, and gain full system privileges, which could wreak havoc on a corporate network if they mean to do harm.

Initially, the fault was thought to be with Razer or SteelSeries. But as Tom's Guide points out, this is more of a Windows issue: It can't distinguish between hardware drivers (things that usually don't need admin permissions) and peripheral software (which do). 

For the moment, the recommendation if you want your PC to be locally secure (this only works if someone has physical access) is to make sure your screen is locked while you're away, and to find the Windows Device Installations Settings prompt (search for it from the Start menu) where you can tell Windows not to automatically download hardware manufacturer apps and custom icons. (With that setting turned off, you may run into minor issues the next time you plug in a new device.)

A spokesperson for SteelSeries told to our friends over at Tom's Guide:

"We are aware of the issue identified and have proactively disabled the launch of the SteelSeries installer that is triggered when a new SteelSeries device is plugged in. This immediately removes the opportunity for an exploit, and we are working on a software update that will address the issue permanently and be released soon."

Jorge Jimenez
Jorge Jimenez
Hardware writer, Human Pop-Tart

Jorge is a hardware writer from the enchanted lands of New Jersey. When he's not filling the office with the smell of Pop-Tarts, he's reviewing all sorts of gaming hardware, from laptops with the latest mobile GPUs to gaming chairs with built-in back massagers. He's been covering games and tech for over ten years and has written for Dualshockers, WCCFtech, Tom's Guide, and a bunch of other places on the world wide web. 

Read more
Mister Fantastic giving a thumbs up
A Marvel Rivals player has uncovered 'one of the most dangerous vulnerabilities a game can have' that'll let cheaters take over your PC and find your passwords
Pipboy holds up an open padlock.
A BIOS update could be all that's stopping you or someone else from jailbreaking your old AMD CPU
marvel rivals characters screenshots
'We will take measures to vanquish this nefarious behavior': Marvel Rivals will ban console players who use a mouse and keyboard
A collection of wireless gaming mice from Logitech, Razer, and Turtle Beach against a green gradient background, with a PC Gamer recommended logo in the corner
Best wireless gaming mouse in 2025: These are the rodents I love getting my mitts on
Wooting 80HE on a desk and controlled by the Wootility.
There's one reason I come back to this one rapid trigger gaming keyboard over the rest, and that's great software
The HyperX Saga Pro gaming mouse on a mousepad, with its component parts spread out next to it.
The HyperX Saga and Saga Pro are magnetic build-a-mouse kits with interchangeable components and the option to add 3D printed parts
Latest in Hardware
A pink GameSir Nova Lite, and a purple 8BitDo Ultimate 2C float in a teal void.
Hall effect controllers are so cheap now I’ve got a deal for you AND your player two
Peely from Fortnite with banana-fied Wolverine claws.
Fortnite comes to Snapdragon: Epic Games announces upcoming Arm support for its Easy Anti-Cheat software
Texas Instruments MSPM0C1104 tiny chip
World's smallest microcontroller looks like I could easily accidentally inhale it but packs a genuine 32-bit Arm CPU
Varjo Aero
Varjo Aero VR headsets seem to be not working on RTX 5090s, and its community is opting for strange solutions while waiting for an Nvidia driver release to fix it
A pasta "display" on a table showing the word "keep" surrounded by fruit. Obviously.
Penne for your thoughts: This pasta display can show three individual frames and it's trying its best, okay
Intel engineers inspect a lithography machine
Finally some good vibes from Intel as stock jumps 15% on new CEO hire and Arizona fab celebrates 'Eagle has landed' moment for its 18A node
Latest in News
A woman with an arcane slingshot uses it to light a distant fire
Deconstructeam's next game is about training to shoot a single fireball at an impossible target
assassin's creed shadow naoe
We asked two parkour athletes to rate the realism of Assassin's Creed's acrobatics, and a surprising 'crime against parkour' might actually be one of the most realistic things they saw
Mechs fight on the outside of a spaceship
MechWarrior 5: Clans is getting DLC with playable Elementals and a fight on the outside of a spaceship
Aloy - Horizon
'I feel worried about this art form:' Unsurprisingly, the real Aloy from Horizon isn't a fan of AI Aloy
Crying laughing emoji with disturbing realistic elements for REPO
REPO's first update will add a new map and a 'duck bucket' so we can finally give that pesky quacker a time out
Man facing camera
The Day Before studio reportedly sues Russian website for calling infamous disaster-game a 'scam'
More about hardware
Varjo Aero

Varjo Aero VR headsets seem to be not working on RTX 5090s, and its community is opting for strange solutions while waiting for an Nvidia driver release to fix it
A pink GameSir Nova Lite, and a purple 8BitDo Ultimate 2C float in a teal void.

Hall effect controllers are so cheap now I’ve got a deal for you AND your player two
A woman with an arcane slingshot uses it to light a distant fire

Deconstructeam's next game is about training to shoot a single fireball at an impossible target
See more latest
Most Popular
A woman with an arcane slingshot uses it to light a distant fire
Deconstructeam's next game is about training to shoot a single fireball at an impossible target
assassin's creed shadow naoe
We asked two parkour athletes to rate the realism of Assassin's Creed's acrobatics, and a surprising 'crime against parkour' might actually be one of the most realistic things they saw
Mechs fight on the outside of a spaceship
MechWarrior 5: Clans is getting DLC with playable Elementals and a fight on the outside of a spaceship
Aloy - Horizon
'I feel worried about this art form:' Unsurprisingly, the real Aloy from Horizon isn't a fan of AI Aloy
Crying laughing emoji with disturbing realistic elements for REPO
REPO's first update will add a new map and a 'duck bucket' so we can finally give that pesky quacker a time out
Wordle today being played on a phone
Today's Wordle answer for Sunday, March 16
Man facing camera
The Day Before studio reportedly sues Russian website for calling infamous disaster-game a 'scam'
Battlefield 1
The best Battlefield game of the last decade is 95% off until Thursday
Fields of Mistria
The hottest farming sim since Stardew Valley just got its second major update, adding lava caves and pets you unlock by having a 'pet dream'
Grab the brilliant Doom 2016 for its lowest price ever