Bleeping Computer

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...
Bleeping Computer

Discord adds Security Key support for all users to enhance security

Discord has made security key multi-factor authentication (MFA) available for all accounts on the platform, bringing significant security and anti-phishing benefits to its 500+ million registered ...
ExtremeTech

Engineer Catches Discord Saving Unencrypted Copies of Users' Conversations, Authentication Tokens

Embark Studios, the maker of Arc Raiders, has acknowledged the issue and released a hotfix that disables the Discord integration and stops excessive logging. The studio says it has no evidence that ...