Discord confirms third-party breach

Discord has disclosed having been impacted by a data breach following a compromise of a third-party support agent's account, which may have resulted in the exposure of users' email addresses, customer service message contents, and attachments delivered in tickets, according to BleepingComputer. Immediate deactivation of the breached account, as well as malware checks on the impacted machine, have been done upon discovery of the issue, said Discord, which added that it has already coordinated with its customer service partner in strengthening its cybersecurity practices and defenses to mitigate future attacks. Meanwhile, Discord users have been urged by the firm to be cautious of potential phishing attacks, fraud attempts, and other suspicious activity even though the risk of such intrusions is believed to be low. "While we believe the risk is limited, it is recommended that you be vigilant for any suspicious messages or activity, such as fraud or phishing attempts," Discord said.