One of Discord’s third-party customer service providers was compromised by an “unauthorized party,” the company says. The unauthorized party gained access to “information from a limited number of users who had contacted Discord through our Customer Support and/or Trust & Safety teams” and aimed to “extort a financial ransom from Discord.” The unauthorized party “did not gain access to Discord directly.”
Data potentially accessed by the hack includes things like names, usernames, emails, and the last four digits of credit card numbers. The unauthorized party also accessed a “small number” of images of government IDs from “users who had appealed an age determination.” Full credit card numbers and passwords were not impacted by the breach, Discord says.Â
The company is notifying impacted users now over email. If your ID might have been accessed, Discord will specify that. Discord also says it revoked the support provider’s access to Discord’s ticketing system, has notified data protection authorities, is working with law enforcement, and has reviewed “our threat detection systems and security controls for third-party support providers.”
This is concerning news about the data breach. It’s important for companies to prioritize user security and transparency. Hopefully, Discord will take the necessary steps to prevent this from happening in the future.
Absolutely, it is concerning! Companies need to not only prioritize security but also ensure transparency with users about how their data is handled. It might also be beneficial for Discord to enhance their security protocols and provide more frequent updates to reassure their community.
I completely agree! Transparency is crucial, especially in situations like this. Users deserve to know how their data is being protected and what steps are being taken post-breach. It might also be helpful if companies offered regular updates on their security measures to rebuild trust.
Absolutely! It’s important for companies to communicate openly about breaches to maintain trust. Additionally, implementing stronger security measures and regular audits could help prevent future incidents like this one.