Discord has disclosed an information breach that compromised the non-public info and identification paperwork of a restricted variety of customers. The incident was traced again to a safety breach at Zendesk, a third-party firm offering buyer assist companies for the platform.
In a statement printed on October 3, 2025, Discord reported that an unauthorized actor gained entry to its buyer assist ticket system, the place confidential consumer knowledge was saved. In line with HackRead, the corporate clarified that its essential infrastructure remained safe and that the attackers’ major motive seemed to be monetary extortion.
What Info Was Affected
The breach impacted customers who had beforehand interacted with Discord’s Help or Belief & Security groups. The uncovered knowledge consists of:
-
Full names, usernames, and e-mail addresses
-
Messages exchanged with assist brokers
-
Restricted billing info, resembling fee strategies and the final 4 digits of fee playing cards
-
Identification paperwork like driver’s licenses and passports used for age verification
The inclusion of official ID paperwork among the many stolen information will increase the potential threat of id theft. Discord has not disclosed what number of customers had been affected however confirmed that each one impacted people have been notified by way of e-mail from noreply@discord.com.
There isn’t a info but on who was accountable for the assault or how lengthy the unauthorized entry lasted. Upon discovering the breach, Discord instantly revoked Zendesk’s entry to inner methods, launched a forensic investigation with cybersecurity specialists, and alerted related knowledge safety authorities. The corporate harassed that passwords, personal messages, and full bank card particulars weren’t compromised however suggested customers to remain alert for phishing or suspicious communications.
Hacker Group Claims Accountability
Though Discord has not formally recognized the perpetrators, a hacker coalition calling itself Scattered LAPSUS$ Hunters has taken credit score for the assault. The group, reportedly a merger of members from Scattered Spider, Lapsus$, and ShinyHunters, shared screenshots on Telegram allegedly displaying entry to Discord’s inner administrative and knowledge privateness panels.
Of their posts, the hackers mocked Discord’s safety measures, together with its use of Okta and Kolide for entry administration. Additionally they claimed to own extra undisclosed info and threatened to launch it on their “Knowledge Leak Website” (DLS), a platform used for publishing or promoting stolen knowledge.
Discord reminded customers to be cautious of potential scams exploiting the breach and reiterated that the corporate is not going to contact anybody by cellphone relating to this difficulty.
Trending Merchandise
Acer Nitro KG241Y Sbiip 23.8â Full HD (1920 x 1080) VA Gaming Monitor | AMD FreeSync Premium Technology | 165Hz Refresh Rate | 1ms (VRB) | ZeroFrame Design | 1 x Display Port 1.2 & 2 x HDMI 2.0,Black
HP 27h Full HD Monitor – Diagonal – IPS Panel & 75Hz Refresh Rate – Smooth Screen – 3-Sided Micro-Edge Bezel – 100mm Height/Tilt Adjust – Built-in Dual Speakers – for Hybrid Workers,Black
TP-Link AXE5400 Tri-Band WiFi 6E Router (Archer AXE75)- Gigabit Wireless Internet Router, ax Router for Gaming, VPN Router, OneMesh, WPA3
Dell S2722DGM Curved Gaming Monitor – 27-inch QHD (2560 x 1440) 1500R Curved Display, 165Hz Refresh Rate (DisplayPort), HDMI/DisplayPort Connectivity, Height/Tilt Adjustability – Black
