Hackers stole partial fee info and personally figuring out knowledge related to some Discord customers after compromising a third-party customer support supplier.
The assault occurred on September 20 and affected “a restricted variety of customers” who interacted with Discord’s buyer help and/or Belief and Security groups.
Discord was created as a communication platform for avid gamers, who characterize greater than 90% of the userbase, however expanded to numerous different communities, permitting textual content messages, voice chats, and video calls.
In accordance with the platform’s statistics, greater than 200 million individuals are utilizing Discord each month.
Hackers demanded a ransom
Within the notification to affected customers, the messaging firm says that the assault occurred on September 20 and “an unauthorized get together gained restricted entry to a third-party customer support system utilized by Discord.”
On Friday, Discord disclosed the incident publicly, saying that it took quick motion to isolate the help supplier from its ticketing system and began an investigation.
This included revoking the client help supplier’s entry to our ticketing system, launching an inner investigation, participating a number one pc forensics agency to help our investigation and remediation efforts, and interesting legislation enforcement – Discord
The assault seems to be financially motivated, because the hackers demanded a ransom from Discord in alternate for not leaking the stolen info.
Uncovered knowledge contains personally figuring out info akin to actual names and usernames, e-mail addresses, and different contact particulars supplied to the help group.
The social communication service says IP addresses, messages and attachments despatched to customer support brokers had been additionally compromised.
The hackers additionally accessed photographs of government-issued identification paperwork (driver’s license, passport) for a small variety of customers.
Partial billing information, like fee kind, the final 4 bank card digits, and buy historical past related to the compromised account, had been uncovered as effectively.
supply: VX-Underground
VX-Underground security group notes that the kind of knowledge stolen from Discord customers represents “actually peoples [sic] total identification.”
Alon Gal, Chief Expertise Officer at risk intelligence firm Hudson Rock, believes that if the hackers launch the Discord knowledge, it may present essential info to assist uncover or remedy crypto hacks and scams.
“I’ll simply say that if it leaks, this db goes to be enormous for fixing crypto associated hacks and scams as a result of scammers don’t usually keep in mind utilizing a burner e-mail and VPN and nearly all of them are on Discord,” says Alon Gal, Chief Expertise Officer at Hudson Rock
Presently, it’s unclear what number of Discord customers are affected, and the identify of the third-party supplier or the entry vector has not been disclosed publicly.
BleepingComputer contacted Discord with a request for extra particulars concerning the assault, however a remark from the social communications platform was not instantly out there.
It’s price noting that tons of of corporations had their Salesforce cases compromised after the ShinyHunters extortion group accessed them utilizing stolen Salesloft Drift OAuth tokens.
Final month, the hackers claimed to have stolen greater than 1.5 billion Salesforce data from 760 corporations.
Be part of the Breach and Attack Simulation Summit and expertise the way forward for security validation. Hear from prime consultants and see how AI-powered BAS is reworking breach and assault simulation.
Do not miss the occasion that may form the way forward for your security technique
