A recent cyberattack on a third-party vendor has led to a data breach at Discord, potentially compromising the sensitive personal information of approximately 70,000 users. The Discord data breach, which the company disclosed in an official statement updated on October 8, 2025, did not involve a direct breach of Discord’s own systems but instead targeted a service provider responsible for handling customer support and age verification services.
Discord Data Breach Originated from Third-Party Vendor
The cyberattack on Discord’s third-party customer support provider allowed unauthorized access to customer data exchanged with Discord’s Trust & Safety and Customer Support teams. The breach involved government-issued ID photos that were submitted by users to verify their age, along with limited billing information and communications between users and support agents.
Discord, which serves more than 200 million users globally, emphasized that the breach was isolated to the third-party vendor and not the Discord platform itself. Nevertheless, the implications are serious, particularly for users who submitted personal identification during age-related appeals.
In its official statement, the San Francisco-based company confirmed that the affected vendor had been immediately cut off from accessing its internal ticketing systems once the breach was discovered.
Details of the Discord Cyberattack
According to Discord, the cyberattack was financially motivated, with the threat actor attempting to extort a ransom in exchange for the stolen data. The compromised information includes:
- Names, Discord usernames, and email addresses (if shared during support interactions)
- IP addresses
- Limited billing details (such as payment type and last four digits of credit cards)
- Messages exchanged with Discord’s support teams
- A small number of government-ID images
- Internal corporate content, including training documents and presentations
Notably, the data breach at Discord did not expose full credit card numbers, CVV codes, user passwords, or broader activity on the Discord platform beyond the support communications.
Company Response and Ongoing Investigation
As soon as Discord became aware of the cyberattack on its third-party provider, it launched a full-scale investigation, partnering with a top computer forensics firm and notifying relevant law enforcement agencies. The company is also working with data protection authorities and has started contacting affected users via email.
“To be clear, this was not a breach of Discord itself,” the company reiterated. “This was a third-party service provider we used to support our customer service operations.”
Users whose government-issued IDs were potentially compromised will be explicitly informed via email from Discord’s official address: [email protected]. Discord has noted that it will not reach out by phone under any circumstances regarding this incident.
