Discord has revealed that about 70,000 users may have had sensitive information exposed after hackers breached a third-party vendor used for age-related appeals.
The stolen data may include government ID photos, selfies, and IP addresses.
The issue affects users who submitted an age verification request — a process required when Discord suspects a user might be underage or when local laws demand identity checks. These users are asked to send a selfie holding their ID and Discord username to verify their age.
Reports from 404 Media suggest the breach could be larger than Discord has confirmed, with hackers claiming to have stolen 1.5 terabytes of data. Discord, however, said these claims are false and part of an extortion attempt.
The incident has raised fresh concerns about the growing use of age verification systems that require uploading sensitive personal data. Similar laws are already in place in about half of U.S. states, mainly targeting adult content sites. The U.K.’s new Online Safety Act also enforces age verification on major platforms like YouTube, Spotify, Google, X, and Reddit.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
