I have the feeling that Discord employes themself stealing accounts and selling them for profit. Guess our communtiy will move away from discord and join steam's chat system. People can swap your email adress without even the need to click on an verification in your OLD email. Its a shame, and this is a scandal aswell. Maybe i have to block the complete %appdata% folder for any programm other then Discord to be safe.? Whats the purpose of 2factor auth if the thing is strored on my machine. the "authtocken grabbers" are PUBLIC available for every script kiddy. I am actually shocked that its so easy to bypass all this. And no i am not internet monkey that click on everything, this is the first time i got phished/hacked in over 25 years.Īnd yes i had 2factor auth, email and phone verification enabled. Maybe the continent of Europe should take a look at this because it doesn't seem like you care about user data, as the hackers just roam freely with hacked accounts for weeks/months. If you actually fixed the security then maybe there would be less load on your customer support. I get that customer support is probably completely overloaded - given the huge waves of people affected by this I've seen accross twitter. I am currently waiting on my ticket addressing my hacked main account, and from what I've been hearing I'll probably have to wait another week or maybe months. It feels like the only safe way to run Discord is via Linux in a virtualized environment, that is how bad the hacking problem has become. At this point I wouldn't recommend anyone to run Discord under Windows or Android because it is a huge security risk. It is unbelievable that the security of such a big platform is so laughably bad compared to any other service. If the original E-Mail address says that the account got compromised, then the risk of a wrongful freeze is smaller than the risk of a hacker either syphoning money out of the account, spreading more malware to other users or posting harmful content to friends and servers. You already have ways to confirm whether the ticket was opened by the original E-Mail address. What is happening right now is that the login token gets compromised, and then the hacker instantly changes E-Mail and Password so that the real user can't do anything about it, as no verification is in place especially since 2FA can simply be disabled via point 1).ģ) Freeze accounts that got reported as hacked by the original E-Mail address. If this was in place, then a hacker with a stolen login token could only be on the account until the real owner changes the password. This is a basic security feature that almost every other service has. If anyone genuinely loses their phone, I'm sure support could handle that instead of having to handle 1000s of hacked accounts every day.Ģ) Require E-Mail verification for changes to E-Mail and Password. The malware can simply grab this and circumvent anything that requires phone verification. This would not only be beneficial to the users, but also to the support team who is so stressed that account recovery takes weeks to months.ġ) Remove 2FA backup keys. Here are some suggestions to help combat this exploit. My main account got compromised because of this as well, and by doing some research it revealed some major security flaws that Discord has. We automatically remove listings that have expired invites.The malware AnarchyGrabber that compromises user login tokens has been spreading since 2020 and it is recently spiking again. Only server owners can update the invites on Discadia. Note: The invite for a server may be expired or invalid and we cannot provide new invites. Discadia provides “Join” buttons, click that button to join a server. How do I join a Discord server?ĭiscord Invite URLs are used to join Discord servers. A Discord Server List such as Discadia is a place where you can advertise your server and browse servers promoted by relevance, quality, member count, and more. What is a Discord Server List?Ī Discord Server List is a website that provides a way for you to find the Discord servers that you're looking for. Discadia uses a proprietary algorithm to deliver you the best Discord Servers that you're likely to be interested in. Using Discadia you can browse through thousands of servers, search, and filter by tags. While there's a huge range of Discord servers out there, not all of them may appeal to you. Discord is a website and mobile app that provides text, voice, and video communication through community created “chat groups” called 'servers'.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |