Discord Data Breach: 200M Users at Risk, Reset Passwords Urged
Discord, the popular communication platform with over 200 million monthly active users, has announced a data breach. The company has contacted impacted users via email from [email protected], stressing that no other communication channels will be used.
The incident occurred due to the compromise of a third-party customer service provider. Discord has confirmed that a ransomware actor accessed customer data, targeting those who had contacted their customer support or trust and safety teams. The compromised data includes customer names, Discord usernames, email addresses, and other contact details. Additionally, limited billing details such as payment type and the last four digits of credit cards were also impacted. Other potentially affected data includes user IP addresses, messages exchanged with customer service agents, and a small number of government ID images.
The breach also involved the access of corporate data, including training materials and internal presentations. Discord has not provided a figure for the total number of users impacted, but it is limited to those who interacted with their customer service.
Discord has urged impacted users to reset their passwords and enable two-factor authentication. The company has stated that they are working with law enforcement and external security experts to investigate the incident and strengthen their security measures. Users are advised to monitor their accounts and be cautious of any suspicious activity.
