No, that can't be right. Forced use of photo ID for age verification couldn't possibly lead to leakage of said IDs. The purity police assured us!
this post was submitted on 04 Oct 2025
504 points (99.2% liked)
Technology
75756 readers
6803 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
think of the children!!!!!! :< :< :< :< :<
Coincidentally an alarming lot of people that impose pure bullshit on us seems to think of the children a tad too much.
I know right! Now we got their IDs too! :D
/s
load more comments
(3 replies)
I knew this was gonna happen
Candidly, I did not expect it so soon.
I am honestly surprised it took this long for a company to get hacked(surprised it was discord though).
They're not the first. The first one happened in the same week the digital safety act was put in place
load more comments
(1 replies)
I was thinking that, you'd think they'd strike once the pot is a little larger.
And you didn't tell Discord??
I am surprised it took this long. Probably happening since day one and just now getting reported.
Even if it wasn't, they would sold your data to someone anyways, MEta being obivous
Lol I thought they were supposed to delete the ID images once confirmed
"Haha, and you believed us" -Discord
But the ai training lol
FTA: The IDs leaked were from people appealing age verification.
That's different from the age verification process, which goes through a third party provider.
In short, the leaked IDs were from a standard shitty support platform (Zendesk, Salesforce, etc), not the much-advertised "safe and private" age verification system.
Very first question in FAQ:
Q: Does Discord or k-ID keep my selfie data?
A: Discord only logs the k-ID age verification results used to unlock your account—it doesn’t save your selfie image. For questions about k-ID’s processes, please contact k-ID.
So they are going to blame someone else.
Official statement from Discord: "Oopse woopse we did a fucky wucky. Sue us hahaha you won't"
Called it.
And the "Tea" app leak happened right before these age-verification rules started popping up everywhere. It's obvious cause and effect, but it was also demonstrated RIGHT before.
Don't put your hand on a hot stove, especially after watching someone burn their hand on that hot stove.
load more comments
(1 replies)
I wish I could convince my giant discord community to go anywhere else. It's so fucking hard. I've built IRC networks and a matrix server. I host every fediverse app imaginable. I hate being attached to this company and my income being reliant on it.
Back in the day when our community was switching from xmpp to discord, our solution was to write a bot on either end that relayed messages from one to the other. The xmpp bot got more and more naggy over time until eventually we put the xmpp side in read-only for everyone except the relay bot. It did a good enough job at building momentum to switch that the final holdouts came over when we went r/o.
You might consider building something similar if you want to make a genuine effort to switch to matrix or IRC. A relay bot solves the problem of the first people being punished by virtue of being first.
Its a good suggestion and something I've considered. Unfortunately we're using conduit as our server and that type of integration doesn't seem to work well outside of synapse. That said I know some people have gotten it working I just need to dig a little deeper. It's a chore for sure but it seems like the only path forward.
I really wish there was a good competitor to Discord. I have not found one that has the same screen sharing feature. Revolt (now Stoat) gets close but lacks the screen sharing - something me and my friends use a lot. They are adding this soon so hopefully it is good
Now more than ever people will have to choose between privacy and comfort. And not to be a dick, but now more than ever, people choosing comfort are fucking over people who choose privacy.
load more comments
(1 replies)
Matrix or Jitsi with Lemmy or any popular forum software would be my suggestion. More secure and private but require some technical knowledge.
Revolt (Stoat?) is alright, but good luck getting people to join there lol, Discord is the only thing people are willing to join
Matrix, XMPP, GNU-Jami & SimpleX
that has the same screen sharing feature
Uhm, yeah, it's a chat app, not a screen-sharing app.
Screen-sharing is part of chat apps nowadays. You're fully within your rights to stay on IRC and pretend that featureful chat is not the norm these days, but that doesn't mean society is going to move to IRC with you. Like it or not, encrypted chat apps have to become even more usable for the average person for adoption to go up. This reminds me of how all the old Linux-heads insisted that gaming was for children and that Linux didn't need gaming. Suddenly now that Linux has gaming, adoption is going way up - what a coincidence.
Edit: Also for the record, I have a tech-savvy friend who refuses to move to Signal until there are custom emoji reactions, of all things. You can definitely direct your ire towards these people, but the reality is some people have a certain comfort target, and convincing them to settle for less is often harder than improving the app itself.
load more comments
(1 replies)
load more comments
(3 replies)
I am jack's complete lack of surprise
One of Discord’s third-party customer service providers was compromised by an “unauthorized party,” the company says.
So, not Discord but a 3rd party company that handle Discord's customer service, and if you didn't use their customer service then you're not affected.
So, Discord - by forcing your acceptance of their tos which renders them immune from damages done by "third parties*
By offloading a term of service that Discord requires you to provide.
If they force you to give the info, they are responsible for handling and storing it properly, no matter what some evil lawyer or exec says.
If laws make bad things legal because rich people can use words, then there needs to be some form of redress to return the spirit of the laws to the people.
Maybe we all make usernames with a legally binding personal ToS that is deemed agreed upon by the corporation accepting the username.
This is just a shell game and they are conmen.
load more comments
(1 replies)
So they kept the images illegally, hm?
Update photos set deleted=1 where id=553468863
*gasp*
surprisedpikachu.jpeg
This was kind of breach so predictable even surprisedpikachu.txt isn't enough, but it must be done.
⢀⣠⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⣠⣤⣶⣶ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⢰⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣀⣀⣾⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⡏⠉⠛⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⣿ ⣿⣿⣿⣿⣿⣿⠀⠀⠀⠈⠛⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠛⠉⠁⠀⣿ ⣿⣿⣿⣿⣿⣿⣧⡀⠀⠀⠀⠀⠙⠿⠿⠿⠻⠿⠿⠟⠿⠛⠉⠀⠀⠀⠀⠀⣸⣿ ⣿⣿⣿⣿⣿⣿⣿⣷⣄⠀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣴⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣴⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⢰⣹⡆⠀⠀⠀⠀⠀⠀⣭⣷⠀⠀⠀⠸⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠈⠉⠀⠀⠤⠄⠀⠀⠀⠉⠁⠀⠀⠀⠀⢿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⢾⣿⣷⠀⠀⠀⠀⡠⠤⢄⠀⠀⠀⠠⣿⣿⣷⠀⢸⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⡀⠉⠀⠀⠀⠀⠀⢄⠀⢀⠀⠀⠀⠀⠉⠉⠁⠀⠀⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣧⠀⠀⠀⠀⠀⠀⠀⠈⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢹⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿
put the pikachu part in code so it'll render monospaced ;)
⢀⣠⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⣠⣤⣶⣶
⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⢰⣿⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣀⣀⣾⣿⣿⣿⣿
⣿⣿⣿⣿⣿⡏⠉⠛⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⣿
⣿⣿⣿⣿⣿⣿⠀⠀⠀⠈⠛⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠛⠉⠁⠀⣿
⣿⣿⣿⣿⣿⣿⣧⡀⠀⠀⠀⠀⠙⠿⠿⠿⠻⠿⠿⠟⠿⠛⠉⠀⠀⠀⠀⠀⣸⣿
⣿⣿⣿⣿⣿⣿⣿⣷⣄⠀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣴⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣴⣿⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⢰⣹⡆⠀⠀⠀⠀⠀⠀⣭⣷⠀⠀⠀⠸⣿⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠈⠉⠀⠀⠤⠄⠀⠀⠀⠉⠁⠀⠀⠀⠀⢿⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⢾⣿⣷⠀⠀⠀⠀⡠⠤⢄⠀⠀⠀⠠⣿⣿⣷⠀⢸⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⡀⠉⠀⠀⠀⠀⠀⢄⠀⢀⠀⠀⠀⠀⠉⠉⠁⠀⠀⣿⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⣧⠀⠀⠀⠀⠀⠀⠀⠈⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢹⣿⣿
⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿
load more comments
(1 replies)
Can someone please send this to Keir Starmer with the subject like "Look what you did".
Best part:
The unauthorized party gained access to “information from a limited number of users who had contacted Discord through our Customer Support and/or Trust & Safety teams”
Ah yes, another reason not to give me ID to these tech companies. Anyone that demands my ID online can go fuck themselves while I find a replacement service.
Sigh
I tried getting my friends to move to any other chat client but the thing that keeps them on discord is the screen share. Like it or not, this feature is what's locking people in as a one stop shop game streaming chat.
load more comments
(2 replies)
view more: next ›