Top streaming service Discord has suffered a minor cybersecurity incident in which potentially sensitive and personal user data was exposed.
Discord is a platform for people with similar interests to share and communicate. It is popular among the gaming community as it offers a way for video game players to communicate with each other and develop a community outside of the games themselves.
In a letter sent to users seen by BleepingComputer, the company revealed unnamed threat actors managed to compromise an account belonging to a third-party support agent, gaining access to the agent’s support ticket queue, which included some personally identifiable information such as user email addresses.
Furthermore, any messages the users may have exchanged with the support agent, as well as any attachments they may have sent, could also have been accessed.
While there was no word on the name of the third-party partner whose employee was targeted, Discord said it helped that entity implement new features that should prevent these incidents from happening again in the future.
The company did not say which provider was compromised, but some users suggest it might have been Zendesk, which Discord is known to use for managing support tickets.