Discord notified users of a data breach that occurred when a threat actor compromised a third-party customer service agent’s support ticket queue.
“Due to the nature of the incident, your email address, the content of customer service messages, and attachments sent between you and Discord may have been exposed to third parties.” Information security Sent to affected users.
Find out more about supply chain breaches here: Only 3% of UK companies will be spared a supply chain breach in 2021.
The popular messaging platform said it deactivated compromised accounts and completed malware checks on personal machines as soon as it discovered the problem.
“We have also been working with our customer service partners to improve their practices and help prevent these types of incidents in the future,” continued Discord.
“Although we believe the risk is limited, we encourage you to be on the lookout for suspicious messages and activity, including scams and phishing attempts.”
This is not the first time Discord has been targeted by malicious actors. In 2021, Information security Reported new multifunctional malware designed to exploit core functionality on the platform and turn targeted machines into malicious bots.
The same report uncovered an attempt to use Discord as a malicious file hosting service.
Discord’s user base is expected to reach nearly 200 million monthly active users by the end of 2023, making it an increasingly attractive target for attackers.
The platform is particularly popular with the gaming community and is believed to have been the first place Pentagon leaker Jack Teixeira began sharing classified military documents.
It’s unknown how many users were affected by the recent supply chain breach.
Editorial image credit: Ink Drop / Shutterstock.com
