Soooooo you might have seen the whole scare that discord was hacked being posted everywhere. well to stop that Discord wasn't hacked, people were just dumb and got caught up in a really bad phishing campaign by a small-time hacking group that I will not post the name of because I don't want to give recognition to the group.
Trough this phishing campaign they got access to over 6000 credentials of which 4800+ were still active as off last night according to reports of a certain skid server using a custom account testing tool, that used the API keys to post messages, and wait for a response.
So ok 4800+ people lose their accounts why the panic on your twitter, to follow the common saying "stop bitching change your password ???", well see it's not the people that are just effected here with this breach, its hundreds of communities of people. so this part needs some back story. So a certain skid group, myself and other members of the BackSlash Intelligence Group "a volunteer group, who volunteer their time and abilities to track down missing people, investigate APT's, track terrorist cells and assisting in fugitive recovery" have been investigating a hacking group who have been attacking multiple discord servers and wiping large communities, away as fast as they join.
This came across our table when someone we know who was developing a bot for intelligence use, accidentally leaked the token for their bot on GitHub this "hacking group" I use that term very lightly here, used and abused the token, deleting all the channels, banning all the members of lower privilege, changing the server name, picture and leaving a nasty little message for the owner or higher privilege person to find it on the server in this case destroying a little commmunity, leaving the members no way of ever communicating again unless they were friends or had past contact.
so not an issue for one or two tokens, but the issue with people who are new to secure coding or coding in general and as a project make a bot for the favorite gaming platform, post their code on GitHub with hardcoded API tokens to save time. This group was grabbing these tokens... Ok so back to the leak how does this affect things, well part of the leak was 6000+ API tokens for users. so while monitoring this group a chat came up in the general channel about modifying the current code to accept user tokens, and their tool was up and running. So again its only 6000+ users why is that an issue????
well let's say you have a server with 5000+ members 200+ channels and is a highly active community of hundreds of regular users, now let's say you have an Admin on your server, that admin belongs to 40+ servers and is an admin in multiple communities or has high privileges at the minimum in multiple servers. So you have a user token, now let's say you have a bot that forces commands to the user through the API or even a group of people manually exploiting the users with logging, these attackers start sending commands such as ban all users .etc .etc then you turn this list of say 6000+ API's instead of one sever each could at minimum have privilege on say 2 servers each so your talking 12000+ servers affected and possibly even more. I don't know about you but if even 10 of these communities are similar to TheManyHatsClub that is a lot of people individually affected by this.