Discord has confirmed that around 70,000 users may have had their government ID photos exposed following a data breach involving one of its third-party service providers.
The company clarified that the breach did not occur on Discord’s own systems but through a customer support vendor that handled user verification requests.
The breach came to light after a hacker group claimed to have stolen 1.5TB of data containing over 2.1 million photos related to Discord’s age verification system. The group allegedly tried to extort the company by threatening to release the data online. In response, Discord denied these exaggerated claims and emphasized that the actual number of affected users is significantly lower.
Discord spokesperson Nu Wexler told The Verge that approximately 70,000 users worldwide might have had their government ID photos exposed. These photos were collected as part of age verification appeals handled by the third-party vendor, which has since been removed from Discord’s network.
The company said all affected users have been notified and that they are working closely with law enforcement, data protection authorities, and external security experts to address the situation. Discord also assured users that the compromised systems have been secured and the vendor relationship has been terminated.
Last week, Discord’s initial statement revealed that the incident may have exposed sensitive information such as names, usernames, email addresses, the last four digits of credit cards, and IP addresses. The company reiterated its commitment to user privacy, saying, “We take our responsibility to protect your personal data seriously and understand the concern this may cause.”
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
