Discord Data Breach: 200M Users' Sensitive Info Compromised
Discord, the popular communication platform with over 200 million active users, has revealed a data breach following a cyberattack on a third-party customer service provider. The incident, which occurred on September 20, 2023, and was discovered on October 3, 2023, has compromised sensitive user information.
The stolen data includes names, Discord usernames, emails, IP addresses, and messages exchanged with customer service agents. In some cases, images of government IDs such as driver's licenses and passports were also accessed. Billing information, including the last four digits of credit cards and purchase history, was also compromised. Discord has not specified the number of users impacted.
Discord has revoked the third-party provider's access to its ticketing system and launched an investigation. The company is reviewing its security controls for third-party support providers to prevent future incidents. Discord is notifying affected users and relevant data protection authorities.
The hackers attempted to extort Discord after the attack. Discord warns users to be vigilant against potential phishing attempts and to change their passwords as a precaution. The company assures users that it is committed to enhancing its security measures to protect user data.
