Security News > 2021 > July > Discord CDN and API Abuses Drive Wave of Malware Detections
Researchers say there has been a massive uptick in the number of found Discord malware detections compared to last year.
Because Discord is heavily trafficked by younger gamers playing Fortnite, Minecraft and Roblox, a lot of the malware floating around amounts to little more than pranking, such as the use of code to crash an opponent's game, Sophos explained.
"The threat actors behind these operations employed social engineering to spread credential-stealing malware, then use the victims' harvested Discord credentials to target additional Discord users."
The team also found outdated malware including spyware and fake app info stealers being hosted on the Discord CDN. Comparing the number of URLs hosting malware on Discord's CDN gives an idea of the looming problem.
"With more organizations using Discord as a low-cost collaboration platform, the potential for harm posed by the loss of Discord credentials opens up additional threat vectors to organizations," Sophos said.
"Even if you don't have a Discord user in your home or office, abuse of Discord by malware operators poses a threat."