Discord Data Breach: 5CA Denies Wrongdoing
A new twist emerges in the ongoing Discord data breach saga, which exposed information and ID photos of over 70,000 users worldwide.
Discord has named 5CA, a third-party service provider, as the vendor responsible for the breach. However, 5CA denies any wrongdoing, stating that its systems haven't been hacked.
On October 3, 2025, Discord reported that an unauthorized party gained access to one of its third-party customer service providers, affecting users who had interacted with Customer Support or Trust & Safety.
In an updated statement on October 9, Discord formally identified 5CA, a Netherlands-based customer experience firm, as the provider involved in the breach.
The attackers, known as the Scattered Lapsus$ Hunters (SLH), allegedly breached 5CA's support ticket environment and stole 1.6 terabytes of data.
The breach has raised concerns about the security of user data and the responsibility of third-party vendors.
Author's summary: Discord names 5CA as responsible for the data breach.