Hackers have claimed that they breached a system used by Discord and accessed data of around 5.5 million users. They said they stole about 1.6 terabytes of data, including support tickets, attachments, and partial billing details. The attack reportedly took place in late September 2025 and lasted nearly 58 hours. Discord, however, said its main systems were not affected and that the breach happened through a third-party vendor.
The hackers claim they took data from over 8 million support tickets that contained user emails, usernames, IP addresses, and billing information. They also said they found partial payment records belonging to about 580,000 users. The group demanded a ransom of $5 million, later reduced to $3.5 million, threatening to leak the stolen data if Discord did not pay.
Discord has denied the hackers’ claims about the scale of the breach. The company confirmed that the incident involved a customer support service managed by an external vendor. It stated that only around 70,000 users may have had their government-issued ID photos exposed. These were images submitted for verification or appeals.
The company assured users that no passwords, chat messages, or full credit card numbers were leaked. Discord explained that the main platform remains secure and unaffected. Only those who interacted with customer support or trust and safety teams might be impacted by the breach.
After discovering the breach, Discord immediately revoked the vendor’s access and started an internal investigation. It also contacted cybersecurity experts and law enforcement to handle the situation. Affected users are being notified through official emails sent by Discord.
The exposed information may include names, usernames, email addresses, IP addresses, and ticket conversations. A small number of users who submitted ID photos may also be affected. However, Discord confirmed that sensitive data like complete payment information and passwords were not accessed.
Discord advised users to stay alert for phishing messages or fake emails claiming to be from the company. It also recommended enabling two-factor authentication to protect accounts from further risks. Users should report any suspicious messages and avoid sharing personal information.
This breach highlights the risks linked with third-party vendors that handle user data. Even when main platforms are secure, outside systems can be targeted by attackers. While hackers claim a massive leak, Discord maintains that the real impact is much smaller. Investigations are still underway to prevent similar incidents in the future.
Stay alert, and keep your security measures updated!
Source: Follow cybersecurity88 on X and LinkedIn for the latest cybersecurity news
