Today, the Breachforums resource has information about the data leak of almost a million users from the popular Restorecord service, which allows you to create backup copies of Discord servers. As a result of the leakage, such data as temporary marks, the last IP address, user names and Discord identifiers were disclosed. The Restorecord service has not yet responded to reports of this safety incident.
Image source: unsplash.com
Restorecord is a security service that allows users to create a backup copies of their Discord servers. According to reports, the company serves 99 million participants and 100,000 companies. Before the current incident, it was believed that the service reliably protects 55 thousand servers.
The user with the Sythe pseudonym has published a link to a file in the .csv format (Commema-Separate Values), which contains almost a million records of users of the Restorecord service. The file is available for free download and is not accompanied by malware loading, although the domain on which it is loaded is usually associated with attackers. The goal, motive and method of leakage are still unknown.
The consequences of this incident can be serious, given the confidential nature of the disclosed data. Although passwords, apparently, were not compromised, a combination of users, Discord identifiers and IP addresses can be used for targeted phishing attacks or other intruding actions.
Users are recommended to maintain vigilance, change passwords, include two -factor authentication in their accounts and track any suspicious activity. The leak causes serious doubts about the methods of ensuring the safety of third -party services, such as Restorecord, emphasizing the need for more stringent data protection and transparency in the processing of user information.