Discord Reports 70,000 Users Affected in Third-Party Data Breach

Discord Data Breach Exposes 70,000 User ID Photos | CyberPro Magazine

Discord has confirmed that around 70,000 users may have had their government ID photos exposed following a data breach involving a third-party customer service provider.

The Discord Data Breach occurred through a vendor platform used for customer support and was not an attack on Discord’s own systems. Hackers behind the incident are reportedly attempting to extort Discord by sharing false information about the scale of the breach, claiming to possess more than 1.5 terabytes of user data.

Company Clarifies Scope of the Discord Data Breach

In a statement shared with The Verge, Discord spokesperson Nu Wexler said that the company identified approximately 70,000 accounts globally that may have been affected. The compromised data includes government ID photos submitted as part of the platform’s age verification process. Discord emphasized that exaggerated figures circulating online were part of an extortion attempt.

“This was not a breach of Discord itself but of a third-party vendor used to support our customer service operations,” the company explained. Discord added that it has contacted all potentially impacted users and taken steps to secure the affected systems. The partnership with the compromised vendor has since been terminated.

Data Potentially Exposed in the Incident

In addition to ID photos, Discord’s earlier disclosure noted that other personal information might have been impacted. This includes users’ names, usernames, email addresses, IP addresses, and the last four digits of credit cards. The company stated that it continues to assess the scope of the exposure in collaboration with cybersecurity experts.

The Discord Data Breach reportedly stemmed from the compromise of a Zendesk-based support platform, which stored user data used to verify identity during customer service interactions. Attackers claim to have accessed more than two million photos related to age verification appeals. Discord, however, maintains that the actual number of affected files is significantly smaller.

Discord’s Response and Security Measures

Following the discovery of the Discord Data Breach, Discord immediately secured the affected systems and notified relevant authorities. The company is working with law enforcement, global data protection agencies, and external cybersecurity firms to investigate the matter. Discord also reassured users that its internal systems, including chat servers and user databases, were not compromised.

“We take our responsibility to protect user data seriously and understand the concern this incident may cause,” the company said. “We will not reward those responsible for their illegal actions and are committed to ensuring this situation is fully contained.”

Broader Cybersecurity Implications

This incident highlights ongoing risks faced by digital platforms that rely on external vendors for customer support and identity verification services. Third-party vulnerabilities continue to be a major vector for Discord Data Breach, affecting both user trust and corporate accountability.

Cybersecurity analysts note that while Discord’s main infrastructure remained secure, the event serves as a reminder for companies to evaluate data access protocols for external partners. The exposure of government ID photos, even in limited numbers, could increase risks of identity misuse or phishing attempts.

Continued Monitoring and Transparency

Discord has committed to providing updates as the investigation progresses. The company urged users to remain cautious of unsolicited messages or suspicious login attempts and to enable two-factor authentication for added security.

With over 150 million active users, Discord remains one of the world’s most widely used communication platforms for gamers, educators, and online communities. Its swift response and transparency about the Discord Data Breach aim to restore user confidence while reinforcing the importance of vendor security management in the digital ecosystem.

Visit CyberPro Magazine For The Most Recent Information.

LinkedIn
Twitter
Facebook
Reddit
Pinterest