A major data security incident is allegedly unfolding as a new online tool claims to provide searchable access to a massive database of information scraped from Discord. The victim, Discord, is a popular American VoIP and instant messaging social platform. It is widely used by communities worldwide, particularly in the gaming sector, but has also grown to host a vast range of groups for various interests, from study groups to professional organizations, making this alleged breach a significant concern for millions of users who rely on the platform for communication.
The threat actor behind the tool advertised on a forum that they have indexed a colossal amount of user data, making it searchable through a user-friendly interface. The scope of the allegedly compromised data is extensive and raises serious privacy questions. The service claims to offer access to even deleted messages, which, if true, would represent a severe violation of user privacy and trust in the platform. The data allegedly available includes:
- 1,757,910,330+ messages indexed
- 33,596,596+ unique users
- 198,209,908+ voice sessions logged
- 52,145,937+ files archived
- Full history, including allegedly deleted messages
