"On Oct. 3, Discord revealed that hackers had compromised one of the company's customer service providers, hoping to get a ransom from Discord."
"On Thursday, the company revealed more information: 70,000 people may have had their government IDs lifted, and the hackers also got users' names, IP addresses, conversations with support agents and the last four digits of their credit cards."
"This was not a breach of Discord, but rather a breach of a third party service provider, 5CA, that we used to support our customer service efforts."
"The breach would not have occurred if Discord or Zendesk had abided by their security-related promises."
Discord experienced a security incident when hackers compromised a third-party customer service provider connected to the platform. Roughly 70,000 people may have had government IDs stolen, and attackers accessed names, IP addresses, support conversations, and the last four digits of credit cards. The incident involved an extortion attempt and spurred multiple class-action lawsuits in U.S. District Court alleging negligence and failure to uphold security promises. One suit implicates Zendesk through its relationship with the breached provider, while a Zendesk spokesperson stated that Zendesk found no compromised security controls.
Read at SFGATE
Unable to calculate read time
Collection
[
|
...
]