Discord Knowledge Breach Exposes Customers’ Private Data and Paperwork

Discord has disclosed an information breach that compromised the non-public info and identification paperwork of a restricted variety of customers. The incident was traced again to a safety breach at Zendesk, a third-party firm offering buyer assist providers for the platform.

In a statement revealed on October 3, 2025, Discord reported that an unauthorized actor gained entry to its buyer assist ticket system, the place confidential person knowledge was saved. In line with HackRead, the corporate clarified that its foremost infrastructure remained safe and that the attackers’ main motive gave the impression to be monetary extortion.

What Data Was Affected

The breach impacted customers who had beforehand interacted with Discord’s Help or Belief & Security groups. The uncovered knowledge contains:

Full names, usernames, and electronic mail addresses
Messages exchanged with assist brokers
Restricted billing info, akin to cost strategies and the final 4 digits of cost playing cards
Identification paperwork like driver’s licenses and passports used for age verification

The inclusion of official ID paperwork among the many stolen recordsdata will increase the potential threat of identification theft. Discord has not disclosed what number of customers had been affected however confirmed that every one impacted people have been notified through electronic mail from noreply@discord.com.

There isn’t a info but on who was liable for the assault or how lengthy the unauthorized entry lasted. Upon discovering the breach, Discord instantly revoked Zendesk’s entry to inside programs, launched a forensic investigation with cybersecurity specialists, and alerted related knowledge safety authorities. The corporate harassed that passwords, non-public messages, and full bank card particulars weren’t compromised however suggested customers to remain alert for phishing or suspicious communications.

Hacker Group Claims Duty

Though Discord has not formally recognized the perpetrators, a hacker coalition calling itself Scattered LAPSUS$ Hunters has taken credit score for the assault. The group, reportedly a merger of members from Scattered Spider, Lapsus$, and ShinyHunters, shared screenshots on Telegram allegedly exhibiting entry to Discord’s inside administrative and knowledge privateness panels.

Of their posts, the hackers mocked Discord’s safety measures, together with its use of Okta and Kolide for entry administration. Additionally they claimed to own further undisclosed info and threatened to launch it on their “Knowledge Leak Web site” (DLS), a platform used for publishing or promoting stolen knowledge.

Discord reminded customers to be cautious of potential scams exploiting the breach and reiterated that the corporate is not going to contact anybody by telephone relating to this subject.

Filed in Cellphones >Computers >Gaming. Learn extra about Discord and Privacy.