Discord, the popular communication platform, has confirmed that approximately 70,000 users may have had their government ID photos exposed in a data breach. The incident, which unfolded last week, involved a compromised Zendesk instance—a customer service tool used by the company. An anonymous source revealed that a group claiming to have ‘1.5TB of age verification-related photos’ extorted Discord, prompting the company to address the breach publicly.
In an official statement, Discord spokesperson Nu Wexler assured users that all affected individuals had been notified. The breach reportedly exposed additional sensitive information, including names, usernames, email addresses, the last four digits of credit card numbers, and IP addresses. Wexler emphasized the company’s collaboration with law enforcement, data protection authorities, and external security experts to mitigate the breach’s impact. ‘We’ve secured the affected systems and ended work with the compromised vendor. We take our responsibility to protect your personal data seriously,’ Wexler said.
While Discord did not confirm that personal financial data was directly compromised, the breach has raised concerns about data privacy and security. As the investigation continues, the company faces mounting pressure to ensure the safety of user information. With the digital landscape increasingly vulnerable to cyber threats, this incident underscores the need for robust cybersecurity measures and transparency in data handling practices.