As someone who has worked in cybersecurity, there’s a saying in the industry: “You can never get too.” But Companies Are Facing Increasingly Dangerous Risks from Zero-Day Attacks, As Well As Some Laws that Require to Share Event Sensitive Data. That all came to a head with a recent Discordia Security Breach.
As confirmed by The VergeDiscord spokesperson nu wexler has shared that roughly 70,000 USSERS HAVE BEEN IMPACTED BY A DATA BREach. This BREach Includes Government IDs, WHICH DISCORD CLAIMS WERE ACCESSED VIA A “THIRD-PARTY Customer Service Provider.” For Reference, Discord Has Grown to Roughly 200 million Active Monthly Users This Year.
DISCORD CONFIRMS SECURITY BREach Affecting Up to 70,000 USSERS
Note Every User Was Impacted
AFTER DISCORD NOTED The break in a more General Sense Last Week, More details are starting to form as to what actually happened. Acciting to wexler, this is an attempt to “Extor a Payment from Discord,” and the Number of Impacted users is roughly 70,000.
AS A Result, Discord has provided the following staff to impact users:
All affected users globally have been contacted, and we continue to work Closely with Law Enforcement, Data Protection Authorities, and External Security Experts. We’ve Secured the affected Systems and Ended Work with the compromised local. We take our respectibility to protest your Personal Data Serious and Understand the Concern This May Cause.
The issue arises from a third-party local that verifies government ids, which some users need to upproad to prove their age and identity. These laws are Currently implemented (or are in the process of rolling out) in australia and the United Kingdom, and Specific US Tos Toying with Similar Legislation.
IT’S part of a growing Concern About Recent Legislation, Which Requires users in Specific Regions to Upload Government IDs to Utilize Services. MANY OPPONENTS to Said Legislation Note that you’re opening your forth to the fourth Data breaaches, whic happened directly with discord, one of the world’s Most Popular Communication Apps.
Everything was Leaked from Discord’s Security Breach
Government IDs are the Main Leak
DISCORD HAS SHARED THAT THE FOLLOWING INFORMATION WAS PARTS OF THE RECENT SECURITY BREach, as detail On Their Official Blog:
-
Emails
-
Credit Card Info (Last Four Digits)
-
Usernames
-
Ip addresses
-
Government ids
Acciting to Discord, Full Credit Card Numbers, CCV Codes, Messages or Activity, OR PASSWORDS/AUTHENTICATION DATE Were not impact nor A Result of the Breach. While it is could have been work, leaked governments are never a good look. These new legislative rollouts will continue to cause more headaches, especilantly for companies not adequately equipped for security concertns.
Discordia Stressses that is was not a break of discord’s data itself, but a third-party local. They’ve takeen Swift Action, Including Revoking The Local’s Access while they have Continue to investigate the wills of the law enforcement, and notify impact users.
