Discord Hacked User Data and ID Photos Leaked
 |
| Discord Hacked User Data and ID Photos Leaked. |
Discord has confirmed a data breach after one of its third-party contractors was hacked by unknown attackers. The incident affected the company’s customer support service, exposing some user data from those who recently contacted the support team. The company reported the breach last week via official emails sent to affected users.
According to Discord, the number of impacted users is relatively small, but the leaked information is quite sensitive. In its official statement, the company revealed that hackers accessed users’ names, Discord usernames, email addresses, and contact details. Some payment-related data, including payment methods, the last four digits of bank cards, and purchase history, were also compromised. In addition, IP addresses and full chat logs with customer support agents were accessed.
What makes the situation even more serious is that several images of personal identification documents were also stolen. Some users who had previously sent photos of their IDs, such as passports or driver’s licenses, for age verification were affected by this leak. These images could potentially be misused for fraud or identity theft.
However, Discord assured users that full card numbers, CVV or CVC security codes, and account passwords remain safe. Those sensitive details are not stored on the contractor’s system that was breached, so hackers couldn’t access them. Regular chats and messages outside of customer support conversations were also not impacted by the incident.
 |
| Discord Hacked User Data and ID Photos Leaked. |
As soon as the breach was detected, Discord immediately revoked the contractor’s access and brought in a leading cybersecurity firm to investigate. Law enforcement authorities have also been involved to track down the attackers. The company said it is now reviewing its security measures and strengthening oversight for all external service providers.
Discord urged users who recently contacted customer support to check their email inboxes. Affected users should have already received an official notification from noreply@discord.com, which is the only legitimate contact address for this issue. The company also warned users to stay alert for suspicious messages or data requests pretending to be from Discord.
While there have been no reports of widespread data misuse so far, the incident serves as a reminder that even major platforms are not immune to security breaches. Cybersecurity experts recommend users enable two-factor authentication (2FA) and avoid sending personal documents unless absolutely necessary. Discord has pledged to reassess its third-party security systems to prevent similar incidents in the future.
