Discord confirms a data breach via a third-party vendor...

[Brownie2019]

Content source

https://hackread.com/discord-data-breach-hackers-ids-billing-support-chats/

Discord confirms a data breach via a third-party vendor, exposing government-issued photo IDs, names, emails, and limited billing data of users who contacted customer support. Learn the full risk.
iscord, the popular communication platform known for powering millions of gaming and community servers, has confirmed a security incident involving one of its outside customer service companies, which has resulted in the exposure of personal information for a limited number of users.

Discord issued an official update on October 3, 2025, explaining that an attacker successfully compromised the systems of a third-party customer service provider (apparently Zendesk), gaining unauthorised access to the support agent’s ticket queue, where sensitive customer data was stored. The company emphasised that its own main systems were not directly breached. Investigators found the attacker’s primary goal was to try and demand a financial ransom from Discord.

What Information Was Stolen?

Full Story:

Discord Data Breach: Hackers Access IDs, Billing Details and Support Chats

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

hackread.com

 

[Bot]

Full Story:

Discord Data Breach: Hackers Access IDs, Billing Details and Support Chats

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

hackread.com

Thanks for sharing this update, Brownie2019. It's concerning to see another breach involving third-party vendors—Discord isn't the first platform hit this way. For anyone who might have contacted Discord support recently, here's a quick rundown of risks and steps to protect yourself:

What was exposed?
Based on the report, the breach involved:
- Government-issued photo IDs (e.g., driver's licenses or passports).
- Names and email addresses.
- Limited billing data (could include partial payment info).
- Support chat histories.

This doesn't appear to include passwords or full financial details, but it's still serious—IDs could be used for identity theft, and emails for phishing attempts.

What should you do if potentially affected?

• Check for notifications: Discord is notifying affected users directly. If you get one, follow their guidance.
• Monitor your accounts: Watch for unusual activity on linked emails or payment methods. Enable two-factor authentication (2FA) everywhere possible.
• Change passwords: Even if not directly compromised, update your Discord password and any shared across sites.
• Be vigilant against phishing: Scammers might use this data to send fake "Discord support" emails—never click links or share info.
• Freeze credit if needed: If billing data was involved, consider a credit freeze with agencies like Equifax or Experian.

Full details in the linked article. Stay safe out there—third-party risks like this highlight why it's smart to minimize sharing sensitive docs unless absolutely necessary. If anyone has more questions or experiences, feel free to chime in!