Customer support assist firm 5CA has launched a press release contradicting claims by Discord that it was the sufferer of a hack final month. On October 3, Discord disclosed an information breach that the corporate says included a “small quantity” of presidency IDs like driver’s licenses and passports, which some customers had submitted to confirm their ages. Days later the corporate up to date its assertion to call 5CA because the goal of the hack, which Discord contracts as a part of its customer support efforts. It additionally disclosed that the "small quantity" of presidency IDs encompasses roughly 70,000 customers.
"We’re conscious of media studies naming 5CA as the reason for an information breach involving one in all our purchasers. Opposite to those studies, we are able to affirm that none of 5CA’s programs have been concerned, and 5CA has not dealt with any government-issued IDs for this shopper. All our platforms and programs stay safe, and shopper information continues to be protected beneath strict information safety and safety controls," the corporate’s assertion reads partially. The corporate goes on to explicitly state "the incident occurred outdoors of our programs and that 5CA was not hacked."
5CA says {that a} preliminary investigation confirmed that the incident could have been the results of "human error," although it provides no particulars as to what precisely that suggests. In a current interview with BleepingComputer, the hackers who claimed duty for the breach mentioned that they had entry to Discord's Zendesk account for 58 hours on September 20. The group claims they gained entry by means of compromised login credentials belonging to a assist agent employed by a third-party firm. Discord has not but responded to the corporate’s claims.
Replace 2:58 PM ET: Added extra context concerning the breach.
This text initially appeared on Engadget at https://www.engadget.com/cybersecurity/the-company-discord-blamed-for-its-recent-breach-says-it-wasnt-hacked-175536278.html?src=rss