Hackers stole partial payment information and personally identified data associated with some discord users after compromising with a third-party customer service provider.
The attack occurred on 20 September and influenced the “limited number of users”, who interacted with discord customer support and/or security teams.
The discord was designed as a communication platform for gamers, representing more than 90% of the userbase, but extended to various other communities, allowing text messages, voice chat and video calls.
According to platform data, more than 200 million people are using discords every month.
Hackers demanded ransom
In a notification of the affected users, the messaging company says the attack took place on September 20 and “an unauthorized party gained limited access to the third-party customer service system used by the discord.”
On Friday, discord publicly disclosed the incident, stating that it took immediate action to separate the aid provider from its ticket system and started an investigation.
This included the cancellation of access to our ticketing system of the customer support provider, starting an internal investigation, tanging a major computer forensic firm to support our investigation and therapeutic efforts, and to make law enforcement attractive – Strings
The attack seems to be financially motivated, as the hackers demanded a ransom from discord in return for not leaking the information of theft.
The exposed data includes individually identified information such as real names and user names, email addresses, and other contact details provided to the aid team.
Social communication service says that IP addresses, messages and attachments sent to customer service agents were also compromised.
Hackers also accessed pictures of the identity documents (driver’s license, passport) issued by the government for a small number of users.
Partial billing information, such as payment types, final four credit card points, and history associated with the compromised account were also revealed.
Source: VX-underground
VX-underground security group Note The type of data stolen from discord users represents “literally people (SICs) complete identity”.
Alon Gal, Chief Technology Officer of Threat Intelligence Company Hudson Rock, believes that if hackers release discord data, it can provide important information to help or help to expose or solve crypto hacks and scams.
“I would just say that if it is leaked, it is going to be very large to solve the dB crypto and to solve the scams because scammers often do not remember using a burner email and VPN and almost all of them are on discord” Alon Gall saysChief Technology Officer at Hudson Rock
Currently, it is not clear how many discord users are affected, and the name of the third party provider or access vector has not been publicly disclosed.
Bleepingcomputer contacted the discord with requests for more information about the attack, but a comment from the social communication forum was not immediately available.
It is worth noting that hundreds of companies signed a compromise after forcibly recovery after their salesforce institute, which was accessed using the stolen salesloft drift ooutes tokens.
Last month, hackers claimed that more than 1.5 billion salesforce records were stolen from 760 companies.
Recently, Shinyhunters launched more than three dozen data leak site from more than three dozen victims.
attend Violation and attack simulation summit And experience Future of security verificationListen to top experts and see how AI-managed base Breach is changing and attacking simulation.
Do not remember the event that will shape the future of your safety strategy
