Hackers are using Discord to send malware and remote-access trojans, putting millions of users at risk

The Discord CDN network is apparently being abused to send malware masquerading as images, video, or text (Image source: Discord)

A report by RiskIQ indicates that hackers are abusing the Discord CDN to in a range of ways to send users over 27 different types of malware, including remote access trojans that allow them to gain control of victims' devices.

Arjun Krishna Lal, Published 10/30/2021 🇫🇷 🇪🇸 ...

According to a report by the analysts at RiskIQ, Discord's CDN network is increasingly turning into a platform used to disseminate malware. The report indicated that one popular way of spreading malware was by using the Discord CDN’s channel ID system to get users to download password stealers, remote access trojans, and other malware, thinking that they’re downloading legitimate extensions like Taplink.

While the report logged a wide variety of malware on the Discord CDN, RATs, or remote-access trojans, were found to be the most common. This is particularly worrying since RATs are used by hackers to gain direct access and control over victim devices. RATs themselves vary in function from then relatively innocuous Agent Tesla, used to mine cryptocurrency without the victim’s knowledge to other remote-control tools that allow cyber criminals to use victim computers and phones as “zombie systems” to further disseminate attacks.

RiskIQ has not put a dollar value on the potential losses here. However, the report did highlight that Discord’s large userbase means that millions of users are potentially at risk.

Source(s)

RiskIQ

Users will be reprimanded for posting health and Covid-19 misinformation. (Image: Discord - edited)

Discord to ban health and Covid-19 misinformation 02/26/2022

Scams and crypto-malware are more rampant than ever. (Image Source: Comodo cWatch)

New Mars Stealer malware targets Chrome-based browser crypto wallets 02/04/2022

Discord and Sony PlayStation tie the knot with full PSN account integration and PS4/PS5 game activity profile display 02/01/2022

Over US$120 million has been stolen from cryptocurrency wallets linked to BadgerDAO. (Image source: Art Rachen on Unsplash)

Over US$120 million has been stolen from multiple cryptocurrency wallets connected to BadgerDAO 12/03/2021

Joker malware discovered in multiple apps with thousands of installs on the Google Play Store 11/23/2021

An FBI email system has been compromised by a hack, sending thousands of fake messages to random addresses. (Image source: Markus Spiske on Unsplash).

The FBI's email system has been hacked, with thousands of fake messages sent 11/15/2021

Costco warned its customers that they may be victims of a data breach. (Image: Omar Abascal via Unsplash)

Costco reveals data breach due to card skimming 11/14/2021

The newly discovered malware puts millions of IoT devices at risk (Image source: Packetlabs)

Open source Botenago malware could potentially affect millions of routers and IoT devices 11/13/2021

While its creators are unknown, Phonespy appears to offer similar capabilities to NSO Group's infamous Pegasus spyware (Image source: NSO)

Phonespy surveillance software mimics Pegasus and was spotted stealing data from thousands of South Korean Android users 11/11/2021

Many Discord users seem to be opposed to the idea of deep integration between the messenger and crypto assets. (Image source: Discord/Wikipedia/Unsplash - edited)

Discord Nitro users start canceling subscriptions en masse as CEO teases Ethereum and NFT integration 11/09/2021

Routers with security vulnerabilities are the perfect gateway for malware (Image: Stephen Phillips)

Microsoft went from door to door to take malware-infected routers offline 07/20/2021

The fake System Upate app's on-screen presence. (Source: Zimperium)

An Android app calling itself "System Update" is unmasked as malware by a security company 03/28/2021

The first Apple M1-native running malware has been discovered. (Image source: Apple/PCRisk - edited)

Apple M1-native malware targets users of the new MacBook Pro, MacBook Air, and Mac Mini with unwanted Pirrit adware 02/18/2021

More vulnerabilities have been uncovered in Intel's silicon. (Image: Intel)

Another month, another Intel chipset malware vulnerability 06/10/2020

If any of these app icons are on your iPhone or iPad, uninstall them immediately. (Image via Wandera)

Trojan malware found in 17 apps on Apple App Store 10/25/2019

The Int App Lock icon alongside some code it reportedly runs. (Source: Pradeo Lab)

The "Joker" malware is found to exist within yet another Android app 10/23/2019

Read all 3 comments / answer

Loading Comments

Comment on this article

Nvidia RTX 3080 Ti laptop GPU spott...

Sony increases its revenue for its ...

Arjun Krishna - Tech Writer - 623 articles published on Notebookcheck since 2019

I've had a passion for PC gaming since 1996, when I watched my dad score frags in Quake as a 1 year-old. I've gone on to become a Penguin-published author and tech journalist. Apart from working as an editor at Notebookcheck, I write for outlets including TechSpot and Gamingbolt. I’m the Director of Content at Flying V Group, one of the top 5 digital marketing agencies in Orange County. When I'm not traveling the world, gathering stories for my next book, you can find me tinkering with my PC.

contact me via: Facebook, LinkedIn

Please share our article, every link counts!