Hackers compromised a third-party support system used by Discord, stealing sensitive user data including IDs, contact details, and even government-issued IDs, while demanding a ransom. The breach highlights the risks of third-party access to major communication platforms and the potential for large-scale identity theft and cybercrime facilitation. #DiscordDataBreach #LapsusGroup
Keypoints
- Hackers gained unauthorized access to a third-party support system used by Discord.
- The breach exposed personally identifiable information, government IDs, and partial payment details of users.
- The attack was financially motivated, with hackers demanding ransom to prevent data leaks.
- The threat group Scattered Lapsus$ Hunters claimed responsibility, linking it to a Zendesk breach.
- Security experts believe leaked data could aid in solving crypto scams and hacks.