A knowledge breach discover submitted to the Maine Legal professional Basic\u2019s workplace has named Discord Inc. because the affected firm, however the submitting consists of a number of particulars that make the declare tough to deal with as confirmed.<\/p>\n
The discover, submitted on June 8, 2026, lists Discord Inc. of San Francisco, California, because the entity concerned. It claims that greater than 10 million folks have been affected by an incident described as \u201cInsider wrongdoing.\u201d The variety of affected Maine residents is listed as unknown.<\/p>\n
Pink Flags<\/strong><\/h3>\nThe submission says<\/a> the breach occurred on July 9, 2024, and was found on August 2, 2025. That timeline locations the reported discovery greater than a 12 months after the listed breach date, with the discover submitted in 2026.<\/p>\nThe submitting was not submitted by a named Discord authorized, privateness, or safety consultant. The \u201cSubmitted By\u201d part lists Xavier Morrison, with the connection to the affected entity described as \u201cInformation Topic \/ Reporter.\u201d <\/p>\n
The listed cellphone quantity seems to be a placeholder (a faux, inactive, or reserved quantity), and the e-mail deal with supplied is a private Gmail account. A evaluate of a earlier information breach discover<\/a> submitted for Discord to the Maine Legal professional Basic\u2019s workplace in 2023 reveals that the corporate was represented in that submitting by BakerHostetler<\/a>, an American regulation agency.<\/p>\nThese particulars are necessary to note as a result of state breach portals can include notices submitted by events aside from the corporate itself. A submitting can title an organization and embrace critical claims, however that doesn’t robotically imply the corporate has verified the incident or issued the discover immediately.<\/p>\n
The discover additionally leaves necessary fields unclear. It doesn’t specify which private information components have been acquired past \u201cIdentify or different private identifier together with,\u201d and the connected client discover area seems clean. It additionally lists the patron notification date as January 1, 2000, a date that doesn’t align with the reported breach or discovery timeline.<\/p>\n
Moreover, no id theft safety providers have been supplied, in line with the submitting. The discover says client notification was digital, however it doesn’t present a duplicate of the discover despatched to Maine residents.<\/p>\n
\n![\"Maine](\"https:\/\/hackread.com\/wp-content\/uploads\/2026\/06\/maine-govt-portal-discord-data-breach-notice-844x1024.png\")
<\/a>The info breach discover as listed on the official web site of the Maine Legal professional Basic (Picture credit score: Hackread.com<\/figcaption><\/figure>\n<\/div>\nWhat Is Maine\u2019s Information Breach Submitting System?<\/strong><\/h3>\nMaine\u2019s information breach submitting system is a public reporting portal run by the state Legal professional Basic\u2019s workplace. Firms and different events use it to submit notices when private data could have been uncovered in a safety incident involving Maine residents. <\/p>\n
The portal helps the general public, regulators, and journalists monitor reported breach notices, however a list on the location doesn’t at all times imply each element has been independently verified by the state or confirmed by the corporate named within the submitting.<\/p>\n
Deal with The Discover as Unverified and Watch Out for Phishing Emails<\/strong><\/h3>\nThe one identified current cybersecurity incident publicly acknowledged by Discord was disclosed in October 2025, when the firm confirmed<\/a> that hackers stole authorities ID photographs and personal information belonging to about 70,000 customers by way of a third-party vendor breach.<\/p>\nOne other incident, submitted to the Maine Legal professional Basic\u2019s workplace in 2023, confirmed<\/a> a complete of 180 information breach victims, additionally resulting from a third-party breach.<\/p>\nAt this stage, the Maine submitting must be learn as an unverified breach declare involving Discord, not as affirmation that Discord suffered a breach affecting greater than 10 million customers. The submission incorporates sufficient irregularities to warrant warning, together with the reporter function, lacking discover copy, incomplete information class data, and weird notification date.<\/p>\n
The submitting was not submitted by a named Discord authorized, privateness, or safety consultant. The \u201cSubmitted By\u201d part lists Xavier Morrison, with the connection to the affected entity described as \u201cInformation Topic \/ Reporter.\u201d <\/p>\n
The listed cellphone quantity seems to be a placeholder (a faux, inactive, or reserved quantity), and the e-mail deal with supplied is a private Gmail account. A evaluate of a earlier information breach discover<\/a> submitted for Discord to the Maine Legal professional Basic\u2019s workplace in 2023 reveals that the corporate was represented in that submitting by BakerHostetler<\/a>, an American regulation agency.<\/p>\n These particulars are necessary to note as a result of state breach portals can include notices submitted by events aside from the corporate itself. A submitting can title an organization and embrace critical claims, however that doesn’t robotically imply the corporate has verified the incident or issued the discover immediately.<\/p>\n The discover additionally leaves necessary fields unclear. It doesn’t specify which private information components have been acquired past \u201cIdentify or different private identifier together with,\u201d and the connected client discover area seems clean. It additionally lists the patron notification date as January 1, 2000, a date that doesn’t align with the reported breach or discovery timeline.<\/p>\n Moreover, no id theft safety providers have been supplied, in line with the submitting. The discover says client notification was digital, however it doesn’t present a duplicate of the discover despatched to Maine residents.<\/p>\n Maine\u2019s information breach submitting system is a public reporting portal run by the state Legal professional Basic\u2019s workplace. Firms and different events use it to submit notices when private data could have been uncovered in a safety incident involving Maine residents. <\/p>\n The portal helps the general public, regulators, and journalists monitor reported breach notices, however a list on the location doesn’t at all times imply each element has been independently verified by the state or confirmed by the corporate named within the submitting.<\/p>\n The one identified current cybersecurity incident publicly acknowledged by Discord was disclosed in October 2025, when the firm confirmed<\/a> that hackers stole authorities ID photographs and personal information belonging to about 70,000 customers by way of a third-party vendor breach.<\/p>\n One other incident, submitted to the Maine Legal professional Basic\u2019s workplace in 2023, confirmed<\/a> a complete of 180 information breach victims, additionally resulting from a third-party breach.<\/p>\n At this stage, the Maine submitting must be learn as an unverified breach declare involving Discord, not as affirmation that Discord suffered a breach affecting greater than 10 million customers. The submission incorporates sufficient irregularities to warrant warning, together with the reporter function, lacking discover copy, incomplete information class data, and weird notification date.<\/p>\n<\/a>What Is Maine\u2019s Information Breach Submitting System?<\/strong><\/h3>\n
Deal with The Discover as Unverified and Watch Out for Phishing Emails<\/strong><\/h3>\n