Discord data breach exposes 70,000 users’ IDs globally
The attackers gained access to a database containing personal information of users
The popular communication platform Discord has confirmed a major security incident involving a third-party vendor, resulting in the exposure of sensitive personal data, including the government-issued photo IDs of approximately 70,000 users globally.
The breach was not a direct attack on Discord’s core system but a compromise of an external customer service provider used for support and age verification appeals.
The incident, which was discovered in late September, targeted data shared by users who had reached out to Discord’s Customer Support or Trust & Safety teams.
The attackers gained access to a database containing personal information related to customer service requests. The most concerning data exposed were:
- Images of driver’s licenses or passports submitted for age verification appeals. Discord states this affects approximately 70,000 users.
- Usernames, email addresses, and other contact information provided in support tickets.
- The last four digits of credit cards and purchase history (full credit card numbers and passwords were not accessed).
- The content of the messages exchanged with customer service agents.
Discord has stressed that users’ in-app messages and passwords were not compromised.
Discord has been clear that this was not a breach of their main platform and that the unauthorised party is attempting to extort a financial ransom from the company.
Confirming the scale of the ID exposure, they stated, “Of the accounts impacted globally, we have identified approximately 70,000 users that may have had government-ID photos exposed, which our vendor used to review age-related appeals.”
Discord immediately took action which included revoking the vendor’s access to their ticketing system and engaging law enforcement. The company is actively notifying all affected users.
Discord advises users to look for official communication only from a specific email address.
“If you were impacted, you will receive an email from noreply@discord.com. We will not contact you about this incident via phone.”
-
Fans react to Cher's slipup in announcing Kendrick Lamar Grammy -
Elon Musk’s chilling AI prediction: Is Singularity near? -
‘Wildest party’: Elon Musk responds after his name surfaces in Epstein files -
Ashes of Creation future uncertain following mass layoffs and resignation -
Margot Robbie sparks open marriage rumors with 'Wuthering Heights' remark -
Hudson Williams shines as 'Heated Rivalry' gets Mark Carney's praise -
Viral 'Heated Rivalry' Canada fleece jacket finally getting official release -
What’s buzzing around China’s 'viral toy’: The 'crying horse' plushie's new craze