Discord has disclosed an information breach that compromised the non-public data and identification paperwork of a restricted variety of customers. The incident was traced again to a safety breach at Zendesk, a third-party firm offering buyer assist companies for the platform.
In a statement printed on October 3, 2025, Discord reported that an unauthorized actor gained entry to its buyer assist ticket system, the place confidential consumer information was saved. In line with HackRead, the corporate clarified that its foremost infrastructure remained safe and that the attackers’ main motive seemed to be monetary extortion.
What Info Was Affected
The breach impacted customers who had beforehand interacted with Discord’s Help or Belief & Security groups. The uncovered information consists of:
-
Full names, usernames, and e mail addresses
-
Messages exchanged with assist brokers
-
Restricted billing data, reminiscent of cost strategies and the final 4 digits of cost playing cards
-
Identification paperwork like driver’s licenses and passports used for age verification
The inclusion of official ID paperwork among the many stolen information will increase the potential threat of identification theft. Discord has not disclosed what number of customers had been affected however confirmed that every one impacted people have been notified through e mail from noreply@discord.com.
There isn’t a data but on who was liable for the assault or how lengthy the unauthorized entry lasted. Upon discovering the breach, Discord instantly revoked Zendesk’s entry to inner methods, launched a forensic investigation with cybersecurity consultants, and alerted related information safety authorities. The corporate pressured that passwords, non-public messages, and full bank card particulars weren’t compromised however suggested customers to remain alert for phishing or suspicious communications.
Hacker Group Claims Duty
Though Discord has not formally recognized the perpetrators, a hacker coalition calling itself Scattered LAPSUS$ Hunters has taken credit score for the assault. The group, reportedly a merger of members from Scattered Spider, Lapsus$, and ShinyHunters, shared screenshots on Telegram allegedly exhibiting entry to Discord’s inner administrative and information privateness panels.
Of their posts, the hackers mocked Discord’s safety measures, together with its use of Okta and Kolide for entry administration. In addition they claimed to own extra undisclosed data and threatened to launch it on their “Information Leak Website” (DLS), a platform used for publishing or promoting stolen information.
Discord reminded customers to be cautious of potential scams exploiting the breach and reiterated that the corporate is not going to contact anybody by telephone concerning this problem.
Trending Merchandise
Wi-fi Keyboard and Mouse Combo – RGB Backlit, Rechargeable & Mild Up Letters, Full-Measurement, Ergonomic Tilt Angle, Sleep Mode, 2.4GHz Quiet Keyboard Mouse for Mac, Home windows, Laptop computer, PC, Trueque
Wi-fi Keyboard and Mouse Combo – Rii Commonplace Workplace for Home windows/Android TV Field/Raspberry Pi/PC/Laptop computer/PS3/4 (1PACK)
HP 27h Full HD Monitor – Diagonal – IPS Panel & 75Hz Refresh Fee – Clean Display – 3-Sided Micro-Edge Bezel – 100mm Top/Tilt Modify – Constructed-in Twin Audio system – for Hybrid Staff,black
