"Of the accounts impacted globally, we have identified approximately 70,000 users that may have had government-ID photos exposed, which our vendor used to review age-related appeals,"
"Discord Zendesk falls within [the] scope of this malicious campaign. Discord confirmed they were a victim of this malicious campaign on their press release page when they disclosed their compromise,"
"They are threatening to release the stolen data if Discord does not pay them an undisclosed amount of money. According to the threat actors, Discord is ignoring them and/or not complying with their demands,"
Discord confirmed that hackers accessed government identification photos for approximately 70,000 users through a third-party vendor used for customer support and age-related appeals. The compromise also exposed names, Discord usernames, email addresses, contact details, billing information, IP addresses, messages exchanged with support teams, and limited corporate data. Vx-Underground reports the attackers claim to have obtained 1.5 terabytes of ID images (about 2,185,151 photos). The breach stems from a broader campaign targeting the Zendesk software suite that occurred over a month ago. Threat actors provided proof of compromise and are attempting to extort Discord by threatening to release the stolen data.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]