Notebookcheck Logo

Hackers are using Discord to send malware and remote-access trojans, putting millions of users at risk

The Discord CDN network is apparently being abused to send malware masquerading as images, video, or text (Image source: Discord)
The Discord CDN network is apparently being abused to send malware masquerading as images, video, or text (Image source: Discord)
A report by RiskIQ indicates that hackers are abusing the Discord CDN to in a range of ways to send users over 27 different types of malware, including remote access trojans that allow them to gain control of victims' devices.
Business Cyberlaw Security Software

According to a report by the analysts at RiskIQ, Discord's CDN network is increasingly turning into a platform used to disseminate malware. The report indicated that one popular way of spreading malware was by using  the Discord CDN’s channel ID system to get users to download password stealers, remote access trojans, and other malware, thinking that they’re downloading legitimate extensions like Taplink. 

While the report logged a wide variety of malware on the Discord CDN, RATs, or remote-access trojans, were found to be the most common. This is particularly worrying since RATs are used by hackers to gain direct access and control over victim devices. RATs themselves vary in function from then relatively innocuous Agent Tesla, used to mine cryptocurrency without the victim’s knowledge to other remote-control tools that allow cyber criminals to use victim computers and phones as “zombie systems” to further disseminate attacks. 

RiskIQ has not put a dollar value on the potential losses here. However, the report did highlight that Discord’s large userbase means that millions of users are potentially at risk. 

Source(s)

RiskIQ

Related Articles

Users will be reprimanded for posting health and Covid-19 misinformation. (Image: Discord - edited)
Discord to ban health and Covid-19 misinformation 02/26/2022
Scams and crypto-malware are more rampant than ever. (Image Source: Comodo cWatch)
New Mars Stealer malware targets Chrome-based browser crypto wallets 02/04/2022
Discord and Sony PlayStation tie the knot with full PSN account integration and PS4/PS5 game activity profile display
Discord and Sony PlayStation tie the knot with full PSN account integration and PS4/PS5 game activity profile display 02/01/2022
Over US$120 million has been stolen from cryptocurrency wallets linked to BadgerDAO. (Image source: Art Rachen on Unsplash)
Over US$120 million has been stolen from multiple cryptocurrency wallets connected to BadgerDAO 12/03/2021
The Joker malware can obtain SMS management information that leads to unwanted premium SMS subscription signups. (Image source: Unsplash - edited)
Joker malware discovered in multiple apps with thousands of installs on the Google Play Store 11/23/2021
An FBI email system has been compromised by a hack, sending thousands of fake messages to random addresses. (Image source: Markus Spiske on Unsplash).
The FBI's email system has been hacked, with thousands of fake messages sent 11/15/2021
Costco warned its customers that they may be victims of a data breach. (Image: Omar Abascal via Unsplash)
Costco reveals data breach due to card skimming 11/14/2021
The newly discovered malware puts millions of IoT devices at risk (Image source: Packetlabs)
Open source Botenago malware could potentially affect millions of routers and IoT devices 11/13/2021
While its creators are unknown, Phonespy appears to offer similar capabilities to NSO Group's infamous Pegasus spyware (Image source: NSO)
Phonespy surveillance software mimics Pegasus and was spotted stealing data from thousands of South Korean Android users 11/11/2021
Many Discord users seem to be opposed to the idea of deep integration between the messenger and crypto assets. (Image source: Discord/Wikipedia/Unsplash - edited)
Discord Nitro users start canceling subscriptions en masse as CEO teases Ethereum and NFT integration 11/09/2021
Routers with security vulnerabilities are the perfect gateway for malware (Image: Stephen Phillips)
Microsoft went from door to door to take malware-infected routers offline 07/20/2021
The fake System Upate app's on-screen presence. (Source: Zimperium)
An Android app calling itself "System Update" is unmasked as malware by a security company 03/28/2021
The first Apple M1-native running malware has been discovered. (Image source: Apple/PCRisk - edited)
Apple M1-native malware targets users of the new MacBook Pro, MacBook Air, and Mac Mini with unwanted Pirrit adware 02/18/2021
More vulnerabilities have been uncovered in Intel's silicon. (Image: Intel)
Another month, another Intel chipset malware vulnerability 06/10/2020
If any of these app icons are on your iPhone or iPad, uninstall them immediately. (Image via Wandera)
Trojan malware found in 17 apps on Apple App Store 10/25/2019
The Int App Lock icon alongside some code it reportedly runs. (Source: Pradeo Lab)
The "Joker" malware is found to exist within yet another Android app 10/23/2019
Read all 3 comments / answer
static version load dynamic
Loading Comments
Comment on this article
Please share our article, every link counts!
> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2021 10 > Hackers are using Discord to send malware and remote-access trojans, putting millions of users at risk
Arjun Krishna Lal, 2021-10-30 (Update: 2021-10-30)