Discord Data Breach \u2013 Customers Personal Data and Scanned Photo IDs leaked
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A data breach at a third-party customer service provider has exposed the personal data of some Discord users, including names, email addresses, and a small number of scanned government-issued photo IDs.<\/p>\n
The incident did not compromise Discord\u2019s main systems, and the unauthorized access was limited to data handled by the company\u2019s support teams.<\/p>\n
Discord announced that it recently discovered an unauthorized party had gained access to its customer support ticketing system by compromising one of its third-party service vendors. <\/p>\n
The company clarified that this was not a direct breach of Discord\u2019s own servers. The attacker\u2019s goal was reportedly to extort a financial ransom from the company. As soon as the incident was detected, Discord immediately revoked the compromised provider\u2019s access to its systems to prevent further unauthorized activity. <\/p>\n
The company has since launched an internal investigation<\/a>, engaged a leading computer forensics firm to assist, and is collaborating with law enforcement agencies.<\/p>\n The data exposed in the breach pertains to users who interacted with Discord\u2019s Customer Support or Trust & Safety teams. The compromised information may include full names, Discord usernames, email addresses, and other contact details provided during support interactions. <\/p>\n Limited billing information, such as payment type, purchase history, and the last four digits of a credit card number, was also potentially accessed. <\/p>\n Furthermore, the breach included user IP addresses and the content of messages exchanged with customer service agents. Crucially, a small number of users who had submitted government-issued photo IDs like driver\u2019s licenses or passports for age verification purposes had these sensitive documents exposed. <\/p>\n Discord has assured users<\/a> that full credit card numbers, CCV codes, private platform messages, and account passwords were not involved in this incident.<\/p>\n In response to the attack, Discord has notified relevant data protection authorities and is actively reviewing the security controls of its third-party providers. The company is in the process of contacting all impacted users directly via email. <\/p>\n These official notifications will be sent from the address noreply@discord.com<\/strong>. Discord has warned users that it will not contact them by phone regarding this matter and advised them to be cautious of potential phishing attempts.<\/p>\n Impacted users are encouraged to remain vigilant and scrutinize any suspicious messages or communications they receive.<\/p>\n Discord has emphasized its commitment to user privacy and is taking further steps to audit its third-party systems to ensure they meet the company\u2019s security standards and prevent similar incidents in the future.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post Discord Data Breach \u2013 Customers Personal Data and Scanned Photo IDs leaked<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nDiscord Data Breach<\/strong><\/h2>\n