Discord has notified users about a data incident that occurred on September 20, 2025, after hackers compromised one of its external customer service providers. Discord itself was not directly breached, but information stored in the vendor’s support system was accessed.

What attackers accessed:
• Usernames and real names
• Email addresses and IP addresses
• “Limited” billing details (such as payment type and last four digits of payment cards)
• Some internal training materials
• Messages shared between users and Discord support
• For a small subset: government ID images (e.g., driver’s licenses or passports) submitted during certain support verifications

What was not exposed:
• Passwords
• Full residential addresses
• Regular Discord server chats and DMs (outside of the support ticket system)

Who’s impacted:
Primarily users who submitted support tickets through the affected provider around the time of the incident. If your account is involved, Discord says you’ll receive a notice from noreply@discord.com outlining what was exposed and recommended next steps.

Discord’s response:
The company revoked the compromised provider’s access to its ticketing tools, brought in law enforcement, and says it is reviewing detection and safety protocols to prevent repeat incidents.

What Discord users should do now:
• Watch for phishing: Be extra cautious with emails or DMs claiming to be “Discord Support.” Don’t click links, go directly to discord.com or the app.
• Turn on 2FA/Passkeys: Enable two-factor authentication (or passkeys) for your Discord account.
• Review payment alerts: Although only the last four card digits were exposed, set up transaction alerts with your bank as a precaution.
• Scrub support threads: If you shared sensitive details in support tickets, consider redacting/deleting where possible and avoid re-sharing such info.
• Passwords: Since passwords weren’t exposed in this incident, a change isn’t strictly required but if you reuse passwords elsewhere (which you shouldn’t), consider updating and using a unique one plus a password manager.