A recent cybersecurity incident has affected users of Discord, the popular online communication platform used by millions worldwide. The company confirmed that attackers gained access to data from a third-party customer service provider, not Discord’s internal systems, and later attempted to demand a ransom from the company.
According to Discord, the breach occurred on September 20, 2025, when hackers infiltrated a customer support vendor believed to be Zendesk, which handles a portion of Discord’s help desk and trust & safety communications.
As a result, data belonging to users who had contacted Discord’s support or moderation teams was exposed. The compromised information includes:
In a small number of cases, government-issued identification documents — including driver’s licenses and passports — were also accessed.
A hacker group calling itself Scattered Lapsus$ Hunters (SLH) has claimed responsibility for the intrusion. The group published screenshots on Telegram showing what appeared to be Discord’s administrative interfaces and boasted about gaining unauthorized access.
Discord stated that the exposure does not include users’ passwords, complete credit card numbers, or private messages sent through Discord’s main platform. The affected data is limited to what users voluntarily shared with customer support. Still, the nature of this data — often sensitive by design — poses real risks if exploited by cybercriminals.
The company has started reaching out to potentially affected individuals via official email communication only from noreply@discord.com. Users are being urged to ignore calls or messages that claim to be from Discord regarding the breach, as scammers often use such incidents to launch phishing or impersonation campaigns.
In response, Discord has cut off the breached vendor’s system access, hired external cybersecurity experts to investigate, and notified law enforcement.
This event serves as a reminder that even well-secured organizations can be compromised indirectly through their partners. A company’s security posture is only as strong as its supply chain — and third-party service providers often hold valuable customer data that can become an easy target for attackers.
This isn’t Discord’s first experience with such an issue. In 2023, another vendor-related incident exposed user emails and attachments from support tickets, highlighting the recurring challenge of vendor security management in the digital age.
For businesses, this case underscores the need for strong third-party risk assessments, continuous vendor monitoring, and clear data-sharing policies. As outsourcing and cloud services expand, so does the attack surface — making security collaboration between organizations and their vendors more important than ever.
Source: Bitdefender Hot for Security – Discord Users’ Data Stolen by Hackers in Third-Party Data Breach
Fantasy Hub is a new Android RAT sold as malware-as-a-service. It intercepts SMS, steals photos, streams camera/mic, and displays fake bank overlays — read how it spreads and what IT teams must do to detect and contain it.
Many small and mid-sized businesses think disaster recovery is something only large corporations need. But in today’s world, a single cyberattack, system failure, or natural disaster can bring operations to a stop. Business Continuity Planning (BCP) is no longer optional. It is a necessity to keep your business running when the unexpected happens.
Ransomware attacks can bring small and medium businesses to a complete stop. Here are 10 practical steps your office can take today to lower the risk and protect critical data.
Scammers are sending fake PayPal invoices using real small business names. Victims are tricked into calling fake support numbers, while businesses suffer reputational damage. Learn how these scams work, how to spot them in under a minute, and what to do if your business is targeted.
Small businesses often underestimate the devastating financial and reputational impact of a data breach. This blog reveals the true costs—both direct and hidden—supported by real-world examples and clear solutions for SMBs.
Reusing passwords across multiple sites is one of the biggest cybersecurity mistakes you can make. Here’s why it’s risky—and what smart alternatives you should start using today.
