#United States #San Francisco #Data Breach #Discord #Scattered Lapsus$

Discord Under Investigation for Data Breach

San Francisco-based Discord, Inc., renowned for its communication platform catering to diverse communities, faces a serious investigation concerning a significant data breach. The firm Schubert Jonckheer & Kolbe LLP is leading the inquiry after unauthorized access was gained to sensitive information belonging to at least 70,000 users.

Incident Overview

On September 30, 2025, the breach occurred when a third party accessed data from 5CA, one of Discord's customer service partners. Reports suggest that this party accessed detailed information from users who sought assistance via Discord’s Customer Support and Trust and Safety teams. Although the ransomware group Scattered Lapsus$ Hunters claims to have stolen approximately 1.5 terabytes of sensitive data, Discord disputes these assertions, identifying around 70,000 users affected by the breach.

Data Compromised

The unauthorized access potentially compromised a wide array of information, including:

• - Full names
• - Discord usernames
• - Email addresses and other contact details entered by users during support interactions
• - Limited billing information, like payment types and partial credit card numbers
• - Purchase histories linked to the affected accounts
• - IP addresses
• - Correspondence with customer service agents
• - Corporate training materials and internal presentations
• - Government-issued ID photos

Upon identifying the breach, Discord promptly notified affected users around October 3, 2025. As a precaution, users are warned of the potential risks, which include identity theft and privacy violations. Discord users seeking clarity on their legal rights or further insights into the incident are encouraged to contact representatives from Schubert Jonckheer & Kolbe LLP.

Legal Ramifications

The implications of this breach extend beyond immediate user inconvenience. Individuals whose information was compromised may be entitled to financial redress and may also seek an injunction mandating improved cybersecurity measures from Discord. Legal actions stemming from this investigation may shape future standards for data protection within technology firms.

About Schubert Jonckheer & Kolbe LLP

The firm handling this case, Schubert Jonckheer & Kolbe LLP, specializes in class-action lawsuits against corporate entities and is based in San Francisco. Their focus on protecting consumer rights during incidents like these signifies a commitment to hold corporations accountable for mishandling sensitive data.

For further information, affected users can contact the firm or visit their website for more detailed guidance.

This situation underscores the growing importance of robust cybersecurity practices as technology companies face increasingly sophisticated threats to user data. While Discord continues to deny the more severe allegations made by Scattered Lapsus$, the unfolding investigations will be crucial in determining the necessity for more stringent security measures in the tech industry.