Discord: ~70,000 government‑ID photos may have been exposed in third‑party vendor hack
Over the weekend, Discord confirmed that a third‑party customer support vendor was compromised, and that a limited number of users who submitted government ID photos to Discord’s Trust & Safety or customer support teams may have had those images exposed.
Key points:
- Discord now says about 70,000 government‑ID photos may have been exposed — not the initially reported 2 million photos that circulated online.
- Potentially exposed data may include names, Discord usernames, emails, other contact details provided to support, and a limited amount of billing information. Discord says full passwords and full credit card numbers were not exposed.
- Discord’s spokesperson said some larger numbers being shared came from the attackers and are inaccurate; Discord will not pay extortion demands and has revoked the vendor’s access.
- Discord is working with law enforcement, data protection authorities, and external security experts, and has contacted affected users via email from
noreply@discord.com.
What you can do
- If you contacted Discord support with ID documents, check your email for notifications (from
noreply@discord.com). - Monitor your accounts and email for suspicious activity and enable 2‑factor authentication where available.
- Be cautious of phishing/emails claiming to be from Discord; verify sender addresses and avoid clicking unexpected links.
Sources & further reading
Have you been notified by Discord? Share your experience in the comments below to help others stay informed.