Technologies

Discord Security Breach Exposed Government ID Photos of 70,000 Users

A third-party service provider was compromised, and information from people who had communicated with Discord’s customer support and trust and safety teams was exposed.

Hackers have stolen user information from Discord, the popular voice, video and text communication platform, through a third-party customer service provider, and government ID photos were among the information stolen. Discord posted about the breach on Oct. 3 and updated the post on Wednesday.

In the statement, Discord said that about 70,000 users may have had their government ID photos exposed. Those ID photos were shared with the third-party vendor to help review age-related appeals. You must be at least 13 to use the Discord site in the US and Canada, and other countries have different age limits. Specific age-restricted content is available only to those who are 18 and over.

«No messages or activities were accessed beyond what users may have discussed with customer support or trust & safety agents,» the statement said. «We immediately revoked the customer support provider’s access to our ticketing system and continue to investigate this matter.»

Don’t miss any of our unbiased tech content and lab-based reviews. Add CNET as a preferred Google source.

While Discord specifically called out the number of 70,000 affected users, Yahoo News cites a report from cybersecurity research group VX-Underground stating that «the attackers claim to have exfiltrated 1.5 terabytes of data, including approximately 2,185,151 images tied to age verification appeals.»

A representative for Discord reiterated the online statement and said, «the numbers being shared are incorrect and part of an attempt to extort a payment from Discord.» They added that the company, «will not reward those responsible for their illegal actions.»

Ransom wanted

It’s becoming more common for criminals who breach websites to demand payment to keep the information they have stolen private, and Discord said this is happening here.

«An unauthorized party targeted our third-party customer support services to access user data, with a view to extort a financial ransom from Discord,» the statement said.

The statement said law enforcement is involved in the case.

What information was taken?

The Discord statement says that stolen information may include names, Discord usernames, email addresses and other contact details that people may have provided to customer support. Messages shared with customer support, including those government ID images, were also stolen.

Discord says that «limited billing information,» including the last four digits of credit card numbers, was stolen, but not full credit card numbers or CCV codes. The site also says that password and authentication data wasn’t stolen.

It seems likely that this kind of theft will only grow as more sites must comply with age verification laws in certain US states and other countries that are cracking down on verifying users’ age to use a site. Those provided government IDs may be enough for the site to grant people the right to see certain content, but once those IDs are in the site’s databases, they can be stolen.

What do I do now?

The Oct. 8 message says Discord is «in the process of contacting impacted users,» who should look for messages from noreply@discord.com, and that the site will not use the phone to reach users.

It sounds like there’s not a lot Discord users can do at the moment, except to keep an eye out for suspicious messages or calls that could use the stolen information to try to trick or phish users. Enable two-factor authentication if you don’t already have it enabled.

User reaction

Some Reddit users say Discord never responded to their age-verification appeals, even though they were then notified that their information was compromised.

«Discord ignored my ID verification ticket for 2 weeks just to tell me that the same ticket has been involved in a data breach,» wrote one Reddit user. «I’m honestly happy that I didin’t give it to them, got blocked access to half of the servers I’m in but it’s better than having my ID leaked I guess.»

Another person said something similar happened to them, too.

«Got the same email just now,» one person wrote on Reddit. «I appealed my age determination in August. Got a few emails back, but long story short the robot on the other end never accepted my ID. Nearly 2 months later, I’m told my data was leaked on the internet because Discord management doesn’t have its priorities in check.»

Technologies

Verum Messenger Goes Desktop: Launches macOS Version as Part of Expanding Digital Ecosystem

The team behind Verum Messenger has announced a new update, introducing a full-featured macOS version of the application.

The launch of the Mac version marks a significant step in the platform’s development, enabling users to access Verum Messenger not only on mobile devices but also on desktop environments.

The macOS version ensures seamless synchronization across devices while maintaining the platform’s core principles: security, stability, and independence.

Unified Digital Experience

With the release of the macOS version, users can now:

— communicate on a larger screen
— manage chats and files more efficiently
— use the messenger in a full desktop environment
— access core features without limitations

This is particularly valuable for users who rely on messaging platforms for both communication and professional use.

Expanding Capabilities

Verum Messenger continues to evolve into a multifunctional platform combining:

— secure communication
— financial tools (Verum Finance)
— digital asset operations, including Tether
— investment features such as Verum Gold

Toward a Full Ecosystem

The macOS release reflects Verum Messenger’s strategy to become a universal digital platform available across all major devices.

According to the team, the goal is to provide users with continuous access to communication and financial services regardless of device or environment.

Verum Messenger continues to build technologies focused on security, usability, and global accessibility.

Technologies

Google, Meta and Amazon Join Global Pact to Fight Rising Online Scams

The companies will share fraud intelligence and coordinate responses as AI makes scams faster, cheaper and harder to detect.

Modern online scams operate across multiple platforms, perhaps spanning social media, messaging apps, email and online marketplaces. Google, Meta and Amazon are among 11 tech, retail and payments companies that have signed a new agreement to combat online scams by sharing threat intelligence across platforms, Axios first reported Monday.

The initiative, called the Industry Accord Against Online Scams & Fraud, is designed to improve how companies detect and respond to fraud that spans multiple services. Participants say they will exchange signals, such as scam-linked accounts and fraudulent domains, and coordinate enforcement actions.

By sharing intelligence in near real time, companies hope to identify these scams earlier and stop them before they spread.

The effort reflects how modern scams operate. A victim might encounter a fake celebrity investment ad on social media, move to a messaging app where the scammer builds trust, then faces prompts to send money through a fraudulent website, payment app or crypto wallet — spanning multiple companies’ ecosystems.

Google said it now blocks hundreds of millions of scam-related results every day using AI, underscoring how both attackers and defenders are increasingly relying on the same technology. Meta removed more than 159 million scam ads in 2025 and is expanding AI tools to detect impersonation and warn users.

Online scams are growing rapidly, in part because generative AI has lowered the barrier to entry. AI can be used not only to produce realistic phishing emails but also to clone voices and deepfake videos that impersonate executives, public figures and even family members.

The agreement is voluntary and doesn’t create new legal obligations, but it comes after regulators’ increased pressure on tech platforms to address fraud more aggressively. The companies say they will begin building frameworks for reporting and intelligence-sharing, though it’s not yet clear how quickly those systems will be deployed or how effective they will be in practice.

Technologies

Today’s NYT Mini Crossword Answers for Wednesday, March 18

Here are the answers for The New York Times Mini Crossword for March 18.

Looking for the most recent Mini Crossword answer? Click here for today’s Mini Crossword hints, as well as our daily answers and hints for The New York Times Wordle, Strands, Connections and Connections: Sports Edition puzzles.

Need some help with today’s Mini Crossword? I thought it was a fairly easy one, but read on for all the answers. And if you could use some hints and guidance for daily solving, check out our Mini Crossword tips.

If you’re looking for today’s Wordle, Connections, Connections: Sports Edition and Strands answers, you can visit CNET’s NYT puzzle hints page.

Read more: Tips and Tricks for Solving The New York Times Mini Crossword

Let’s get to those Mini Crossword clues and answers.