Actors stole people’s accounts on Discord by pushing modifying trojans into them.
The attackers took over the accounts and then dispense the malware to the victim’s friends.
The malware turned the Discord client into a dangerous piece of software by modifying its regular JavaScript files.
The filenames gave away the role of these JavaScript snippets, but the victims were unlikely to check these manually anyway.
Source: https://www.technadu.com/trojanized-discord-client-grabs-passwords-user-tokens/102800/
TPRM report: https://scoringcyber.rankiteo.com/company/discord
"id": "dis117301222",
"linkid": "discord",
"type": "Cyber Attack",
"date": "05/2020",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Technology',
'name': 'Discord',
'type': 'Company'}],
'attack_vector': 'Malware Dispersion',
'data_breach': {'file_types_exposed': ['JavaScript Files']},
'description': 'Actors stole people’s accounts on Discord by pushing '
'modifying trojans into them. The attackers took over the '
'accounts and then dispense the malware to the victim’s '
'friends. The malware turned the Discord client into a '
'dangerous piece of software by modifying its regular '
'JavaScript files. The filenames gave away the role of these '
'JavaScript snippets, but the victims were unlikely to check '
'these manually anyway.',
'impact': {'data_compromised': ['Account Information'],
'systems_affected': ['Discord Client']},
'initial_access_broker': {'entry_point': 'Malware Dispersion'},
'motivation': 'Account Takeover and Malware Propagation',
'title': 'Discord Account Takeover by Malware',
'type': 'Malware',
'vulnerability_exploited': 'JavaScript File Modification'}