Bleeping Computer

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...
International Business Times

Hackers Expose Discord Age Verification System Issue After Persona Frontend Code Left Wide Open

Hackers have revealed that parts of Discord's new age verification system were effectively exposed to the public after the frontend code for third-party vendor Persona was left accessible on the open ...