Discord token grabber script3/28/2024 ![]() ![]() It feels like the only safe way to run Discord is via Linux in a virtualized environment, that is how bad the hacking problem has become. At this point I wouldn't recommend anyone to run Discord under Windows or Android because it is a huge security risk. It is unbelievable that the security of such a big platform is so laughably bad compared to any other service. If the original E-Mail address says that the account got compromised, then the risk of a wrongful freeze is smaller than the risk of a hacker either syphoning money out of the account, spreading more malware to other users or posting harmful content to friends and servers. You already have ways to confirm whether the ticket was opened by the original E-Mail address. What is happening right now is that the login token gets compromised, and then the hacker instantly changes E-Mail and Password so that the real user can't do anything about it, as no verification is in place especially since 2FA can simply be disabled via point 1).ģ) Freeze accounts that got reported as hacked by the original E-Mail address. If this was in place, then a hacker with a stolen login token could only be on the account until the real owner changes the password. This is a basic security feature that almost every other service has. If anyone genuinely loses their phone, I'm sure support could handle that instead of having to handle 1000s of hacked accounts every day.Ģ) Require E-Mail verification for changes to E-Mail and Password. ![]() The malware can simply grab this and circumvent anything that requires phone verification. This would not only be beneficial to the users, but also to the support team who is so stressed that account recovery takes weeks to months.ġ) Remove 2FA backup keys. Here are some suggestions to help combat this exploit. My main account got compromised because of this as well, and by doing some research it revealed some major security flaws that Discord has. The malware AnarchyGrabber that compromises user login tokens has been spreading since 2020 and it is recently spiking again. ![]()
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |