Discord and Reddit: The fake report message that ends with a stolen Reddit account

Discord and Reddit: The fake report message that ends with a stolen Reddit account

Reddit, Discord Users Targeted in Social Engineering Scam Stealing Accounts

A sophisticated social engineering scam is spreading across Reddit, Discord, and similar platforms, tricking users into handing over login or verification codes no malware or malicious links required. The attack begins with a direct message from a stranger, often claiming the recipient’s account was mistakenly reported or that the sender’s own account was flagged due to the user’s actions.

Scammers maintain engagement by feigning innocence, avoiding arguments, and even asking victims for help "clearing things up." The next phase involves fake "proof" a fabricated email or Discord message posing as official Reddit correspondence, complete with a ticket number, legal threats, and a countdown to suspension. Some versions redirect victims to a fake Reddit moderator or employee on Discord.

The final step is the request for a verification code. The scammer claims a Reddit "supervisor" needs it to confirm the victim’s innocence, then triggers a real login or recovery attempt. When Reddit sends the code to the victim, the scammer uses it to hijack the account, change the password, and lock out the owner. In some cases, victims are coerced into updating their account’s email to one controlled by the attacker, followed by extortion demands such as gift cards to avoid account deletion or misuse.

Reddit’s official processes never involve direct contact between reported users or verification via unsolicited messages. Appeals are handled internally, with no detours to personal Discord accounts. The scam exploits urgency and trust, but basic precautions keeping verification codes private, refusing email changes for strangers, and enabling two-factor authentication can neutralize it. Users who lose access should rely on Reddit’s official recovery tools at reddit.com.

Source: https://www.helpnetsecurity.com/2026/07/09/reddit-false-report-scam-direct-message/

Discord TPRM report: https://www.rankiteo.com/company/discord

Reddit TPRM report: https://www.rankiteo.com/company/reddit-com

"id": "reddis1783578283",
"linkid": "reddit-com, discord",
"type": "Cyber Attack",
"date": "7/2026",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': 'Users on Reddit and Discord',
                        'industry': 'Technology, Social Networking',
                        'location': 'Global',
                        'name': 'Reddit',
                        'size': 'Large',
                        'type': 'Social Media Platform'}],
 'attack_vector': 'Direct Messages (DMs)',
 'customer_advisories': 'Users advised to ignore unsolicited messages, avoid '
                        'sharing verification codes, and enable two-factor '
                        'authentication.',
 'data_breach': {'personally_identifiable_information': 'Potentially (account '
                                                        'details, email '
                                                        'addresses)',
                 'sensitivity_of_data': 'High (account access, personal '
                                        'communication)',
                 'type_of_data_compromised': 'Account credentials, '
                                             'verification codes'},
 'description': 'A sophisticated social engineering scam is spreading across '
                'Reddit, Discord, and similar platforms, tricking users into '
                'handing over login or verification codes without requiring '
                'malware or malicious links. The attack begins with a direct '
                'message from a stranger, often claiming the recipient’s '
                'account was mistakenly reported or that the sender’s own '
                'account was flagged due to the user’s actions. Scammers '
                'maintain engagement by feigning innocence, avoiding '
                "arguments, and even asking victims for help 'clearing things "
                "up.' The next phase involves fake 'proof'—a fabricated email "
                'or Discord message posing as official Reddit correspondence, '
                'complete with a ticket number, legal threats, and a countdown '
                'to suspension. Some versions redirect victims to a fake '
                'Reddit moderator or employee on Discord. The final step is '
                'the request for a verification code. The scammer claims a '
                "Reddit 'supervisor' needs it to confirm the victim’s "
                'innocence, then triggers a real login or recovery attempt. '
                'When Reddit sends the code to the victim, the scammer uses it '
                'to hijack the account, change the password, and lock out the '
                'owner. In some cases, victims are coerced into updating their '
                'account’s email to one controlled by the attacker, followed '
                'by extortion demands such as gift cards to avoid account '
                'deletion or misuse.',
 'impact': {'brand_reputation_impact': 'Potential erosion of user trust in '
                                       'platform security',
            'data_compromised': 'Account credentials, verification codes',
            'identity_theft_risk': 'High (account hijacking, email changes)',
            'operational_impact': 'Account lockouts, unauthorized access',
            'systems_affected': 'User accounts on Reddit and Discord'},
 'initial_access_broker': {'entry_point': 'Direct Messages (DMs) on '
                                          'Reddit/Discord'},
 'lessons_learned': 'Users must verify unsolicited messages, avoid sharing '
                    'verification codes, and enable two-factor authentication. '
                    'Platforms should reinforce official communication '
                    'channels and educate users on recognizing scams.',
 'motivation': 'Account Hijacking, Extortion',
 'post_incident_analysis': {'corrective_actions': 'Enhanced user education, '
                                                  'stricter monitoring of '
                                                  'DM-based scams, and '
                                                  'improved account recovery '
                                                  'processes',
                            'root_causes': 'Exploitation of human trust, '
                                           'urgency, and lack of awareness '
                                           'about official communication '
                                           'channels'},
 'ransomware': {'ransom_demanded': 'Gift cards (in some cases)'},
 'recommendations': ['Enable two-factor authentication on all accounts',
                     'Never share verification codes with strangers',
                     'Verify official communications through platform-approved '
                     'channels',
                     'Use Reddit’s official recovery tools for account issues',
                     'Educate users on recognizing social engineering tactics'],
 'references': [{'source': 'Reddit Official Statement',
                 'url': 'https://www.reddit.com'}],
 'response': {'communication_strategy': 'Advisories to users about the scam '
                                        'and precautions',
              'containment_measures': 'User education on verifying official '
                                      'communications, enabling two-factor '
                                      'authentication',
              'recovery_measures': 'Official recovery tools at reddit.com',
              'remediation_measures': 'Account recovery tools provided by '
                                      'Reddit'},
 'stakeholder_advisories': 'Platforms advised to monitor for suspicious DM '
                           'activity and reinforce user education.',
 'title': 'Reddit, Discord Users Targeted in Social Engineering Scam Stealing '
          'Accounts',
 'type': 'Social Engineering Scam',
 'vulnerability_exploited': 'Human Trust and Urgency'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.