Shortly after the cyberattack, an anonymous group took responsibility for it, claiming that they had some of the most important documents from users, and claimed that they even managed to get the age verification photos from 2,185,151 users. This is a huge amount of data that can be easily exposed to the internet.
Discord felt the need to respond to the anonymous group statement and reported that the numbers are highly exaggerated because only 70,000 users' documents and information were stolen in this cyberattack.
"Following last week's announcement about a security incident involving a third-party customer service provider, we want to address inaccurate claims by those responsible that are circulating online. First, as stated in our blog post, this was not a breach of Discord, but rather a third-party service we use to support our customer service efforts. Second, the numbers being shared are incorrect and part of an attempt to extort a payment from Discord.”, the company stated in a recent announcement.
They also added that every affected Discord user had been contacted, and they work closely with authorities to make sure that this data breach will not affect users further.
To calm its users, Discord also stated that it had decided to revoke the license of the third-party vendor responsible for customer support, along with the Trust & Safety teams. This way,
Discord is making sure that a similar incident will never happen again, ensuring customers' safety during interactions with the popular communication platform.
We don’t know for sure if the data stolen in the cyberattack was or will be exposed on different websites, but even if they choose to keep the data, it still represents a risk.
Stay tuned for more updates!
