180 Users Affected by Discord’s March Data Breach: Time for a Security Checkup
Discord has recently begun informing users who were affected by a data breach in March, which was publicly disclosed in May. Out of the reported 150 million monthly users, only 180 individuals had their sensitive information compromised in this attack, as stated in a data breach notification submitted to the Office of the Maine Attorney General. Consequently, if you are a Discord user, it is more probable that you were impacted by the Discord.io breach, which affected 760,000 users and resulted in the closure of the website.
Discord.io allows Discord users to create custom links for their channels. On August 14, a serious data breach caused by a vulnerability in the website’s code allowed a third-party attacker to steal data and put it up for sale on a breached data forum. It includes hashed passwords, billing information, and Discord credentials.
“We have decided to take down our site for the time being,” Discord.io wrote in a post. The company plans to “completely rewrite our website code and completely overhaul our security policies” in an effort to mitigate the breach and prevent future problems.
This is different from the Discord violation that the company may have contacted you about this week. A separate incident involving Discord and not the separate Discord.io entity occurred earlier this year when an unauthorized user accessed Discord data through a third-party service provider. The hacker stole 180 users’ service ticket information, which contained personal information such as driver’s license numbers. Discord will contact affected users via email to notify affected users of the incident and will provide credit monitoring and identity theft protection services to prevent further damage.