Discord, a popular platform for gamers and online communities, has announced a significant security incident. Hackers targeted a third-party company responsible for age verification, potentially leading to the exposure of official ID photos belonging to around 70,000 users. Discord emphasizes that its own platform was not directly breached, but the compromise of its partner’s systems has put user data at risk.
The affected data may include personal information, partial credit card details, and messages exchanged with Discord’s customer service. However, Discord assures users that full credit card information, passwords, and activity beyond customer support interactions were not compromised.
In response, Discord has revoked the targeted third-party’s access and is cooperating with law enforcement to investigate the breach. While the company has not named the compromised vendor, they have stated that claims of a larger breach are inaccurate and appear to be an attempt at extortion.
This incident highlights the ongoing risks associated with personal data and the importance of robust security measures, even with third-party partners. Discord has previously enhanced its age verification processes amid concerns about content moderation on its platform.