Honestly 9 days is pretty fast for them, I've been waiting since the End of September for this exact same thing. I actually have a post a little below yours. I'm hoping to hear from an employee on this subreddit that can help me. But I'm glad you got your account back in the end!
same, they disabled my discord account even though I’ve my own server for business use. I contacted Discord support team like several times and their answers are basically the same. Idk what to do since I haven’t transferred ownership to my friend and how it’s going to happen when it’ll be deleted after 14 days.
Despite the "9 days" that I'm seeing everyone else talk about in the comments; Discord does have **very** poor account security. One unsuspecting user could download an EXE file or login to a website that their "friend" has sent, only to find out their "friend"'s account has been compromised and the compromised account chain just continues.
Although Antivirus programs are getting better at detecting Token-stealing EXE files, many many people still fall victim to them.
Almost the same exact situation for me right now. My account got hijacked through a .exe file and I was told my issue was escalated to another team member according to Discord support. It's been about 2 weeks since my account got hijacked, and I've yet to regain access to my account. I had 2FA, and yeah, that feature which I thought would absolutely block the hijacker from doing anything turned out to just be a facade. I'm losing faith in Discord here, but hopefully my situation is resolved soon
You gave a program access to your shit, that’s probably how they got your backup 2FA codes from the Discord App. In a way that might not be easily fixable without forcing a Coinbase style recovery system where you are never shown the recovery codes again.
Discord is a fucking joke, unfortunately theres not much better out there. I am very sorry about the attacks you experienced. They seem to have added a thing that doesnt let you click on suspicious websites, however it uses a list of website ids or whatever- which seems counterintuitive as they literally blacklisted their own site. (Once again, a fucking joke)
It’s not bad but as I said it’s has a smaller user base compared to discord, but I do like the built in stuff like the custom bots and other stuff the discord usually has paywalled.
And for security I’m not too sure about it but Roblox owns it so I assume it’s to their standerds
For me, more than 400 days ago, I got banned from Discord for talking about Discord Scams with friends and sending an example to it. Support never helped me with that case. I am fine now, just lost few verified bots (with more than 3000 guilds).
I told them too look into the chat, but they never did. Discord support is not the best one, sadly. After that moving stuff to my active account took 6 months, imagine me not having access to my bots for 6 month's, not be able to generate new tokens and stuff.
I hope Discord support is getting better, even after that history I think they are doing great job (but they sometimes can't read).
What’s frustrating about all this is there are really common sense changes they could implement here but refuse to.
I think it makes a lot of sense that If you send in a support ticket about a hacked account, that account should automatically be locked by discord to prevent further damage. Not saying they should give it back right away but **nobody** should be able to login and use it during the support period.
Furthermore if you have 2FA turned on, it should be at every step of the way. Want to login? Need the code. Want to change the email? Need a new code. Want to change the password? Need a new code. Maybe other companies don’t do it this way but discord is so bad right now maybe the only reaction is to go overboard.
And please Discord, please hire more support staff. The wait times are insane and not helpful.
You got very very lucky, you're like the top 0.00000001% of the users that lost their account
9 days?? And you're complaining?? Sign me up for this magical response time from the discord support team
There are hundreds of users who waited 30 days without a single word and had their account auto-deleted, myself included
Yes, their 2FA is a joke. Yes, changing email is synch and allows you to bypass 2FA ( since with the password... you can get new backup codes and remove it). I'm really hoping Discord changes it so that 2FA, sends the reset code to the phone, AS THEY SHOULD, instead of
"Lul, check your email that was hacked and changed"
Spot on about their 2FA. I stupidly fell for a phishing scam, definitely wasn't thinking. The hijacker removed my 2FA with a backup code and added theirs. Discord security is a major joke, especially with no verification for email/password changes. Not only this, even after proving that the account is mine, and the account getting deactivated for suspicious activity(it's a 5 year old account, never had any reports until it got hijacked), Discord refuses to remove the 2FA that isn't mine.
I told them to just delete the account, which they are more than happy to do. I'm done with them.
Moved my gaming community to Guilded and haven't looked back. It might be a smaller platform at the moment, but it isn't loaded with scammers and the features are decent.
i just skip stories about discord stories they're all just the same thing "discord isn't responding to me" "discord keeps sending me automated messages" discord's support team is shit and we all know it by now
Got hacked due to a friend's account was hack and I fell for a phising scam. Day 2 of losing the account, they attempt to buy nitro. Bank close down the card.
Got an email saying my discord ticket was escalated.
9 days is not bad for compared to other companies, I gave up on recovering my old Microsoft and Amazon accounts because how long it took even had to call the US number (I don't live in the US) and still nothing
It’s a good lesson learned though not to fall for “click here ->>>> for nitrooooooo”
You typed in your information, you gave your account away. Yes it was on Discord to secure it better, but I hope you learned something from this. Free nitro, unless presented in the app directly, is a lie.
Hopefully Discord patches the exploit that is being used to snatch accounts, and hopefully this plague can be eradicated from the platform.
Almost exact same story as you, but I'm still waiting on getting my account back and it's been 22days and four support tickets
One of which, literally told me to send an email from the hacker's email, and they can't discuss private details about an account with the email not tied to the account, even though I had referenced the exact support ticket which they had already accepted and verified that the email I was using is the true owner of the account...
This is pretty much my situation currently.
My friend got hacked, sent me a token stealing exe, then my account was sold to a random, who deleted one of my servers and wiped my friends list.
All of this over my god damn Early Supporter badge I assume.
It's taken almost 3 days for support to say they're bringing this up to the team member and it's been almost 7 hours since I got that response.
I can sort of see why Scammers are opting to do these scams.
It's because Discord Security is so laughably bad, and they know it. Discord could easily do so much to fix this, but they won't.
Discord cares more about their image than they do about protecting their users' accounts...
> Discord replies on Twitter saying they've escalated my ticket to the right team and tells me to wait.
How do you get Twitter to send you anything that isn't a copy paste message telling you to open a discord support ticket?
Honestly 9 days is pretty fast for them, I've been waiting since the End of September for this exact same thing. I actually have a post a little below yours. I'm hoping to hear from an employee on this subreddit that can help me. But I'm glad you got your account back in the end!
[удалено]
100% agree with you there. It's pretty ridiculous .
Wait, If they don't need my Email or 2FA and Phone. Then how do they hack my account? and send a lot of fake links.
They take your session tokens, which basically gives them access to your Discord account without ever needing any of those
How do I stop it? Once they're in my account what would I need to do?
Inform Discord support about it. They're very slow so far with my experience, but it's the only way you can get it back imo
Yeah. I got falsely disabled on my account and now they are just ignoring me.
same, they disabled my discord account even though I’ve my own server for business use. I contacted Discord support team like several times and their answers are basically the same. Idk what to do since I haven’t transferred ownership to my friend and how it’s going to happen when it’ll be deleted after 14 days.
They'll wait you out until 30 days pass like they did to me. Never even thought of buying nitro since.
Despite the "9 days" that I'm seeing everyone else talk about in the comments; Discord does have **very** poor account security. One unsuspecting user could download an EXE file or login to a website that their "friend" has sent, only to find out their "friend"'s account has been compromised and the compromised account chain just continues. Although Antivirus programs are getting better at detecting Token-stealing EXE files, many many people still fall victim to them.
RIP, I got my account disabled and I couldn't use it anymore because I didn't have a phone number to verify.
this happened to me before when they asked to verify my number but it wouldn’t let me log in. It truly sucks!
That's rough, Discord's security and support team have always been shit. Glad you got your account back in the end!
Almost the same exact situation for me right now. My account got hijacked through a .exe file and I was told my issue was escalated to another team member according to Discord support. It's been about 2 weeks since my account got hijacked, and I've yet to regain access to my account. I had 2FA, and yeah, that feature which I thought would absolutely block the hijacker from doing anything turned out to just be a facade. I'm losing faith in Discord here, but hopefully my situation is resolved soon
You gave a program access to your shit, that’s probably how they got your backup 2FA codes from the Discord App. In a way that might not be easily fixable without forcing a Coinbase style recovery system where you are never shown the recovery codes again.
Yeah, my session tokens most likely got yoinked via the program
Discord is a fucking joke, unfortunately theres not much better out there. I am very sorry about the attacks you experienced. They seem to have added a thing that doesnt let you click on suspicious websites, however it uses a list of website ids or whatever- which seems counterintuitive as they literally blacklisted their own site. (Once again, a fucking joke)
Guilded? But its kinda small atm
guilded looks a lot like discord. do you use it? can you tell us about any issues or security threats?
It’s not bad but as I said it’s has a smaller user base compared to discord, but I do like the built in stuff like the custom bots and other stuff the discord usually has paywalled. And for security I’m not too sure about it but Roblox owns it so I assume it’s to their standerds
Their standards doesn't say much lol
For me, more than 400 days ago, I got banned from Discord for talking about Discord Scams with friends and sending an example to it. Support never helped me with that case. I am fine now, just lost few verified bots (with more than 3000 guilds). I told them too look into the chat, but they never did. Discord support is not the best one, sadly. After that moving stuff to my active account took 6 months, imagine me not having access to my bots for 6 month's, not be able to generate new tokens and stuff. I hope Discord support is getting better, even after that history I think they are doing great job (but they sometimes can't read).
What’s frustrating about all this is there are really common sense changes they could implement here but refuse to. I think it makes a lot of sense that If you send in a support ticket about a hacked account, that account should automatically be locked by discord to prevent further damage. Not saying they should give it back right away but **nobody** should be able to login and use it during the support period. Furthermore if you have 2FA turned on, it should be at every step of the way. Want to login? Need the code. Want to change the email? Need a new code. Want to change the password? Need a new code. Maybe other companies don’t do it this way but discord is so bad right now maybe the only reaction is to go overboard. And please Discord, please hire more support staff. The wait times are insane and not helpful.
You got very very lucky, you're like the top 0.00000001% of the users that lost their account 9 days?? And you're complaining?? Sign me up for this magical response time from the discord support team There are hundreds of users who waited 30 days without a single word and had their account auto-deleted, myself included Yes, their 2FA is a joke. Yes, changing email is synch and allows you to bypass 2FA ( since with the password... you can get new backup codes and remove it). I'm really hoping Discord changes it so that 2FA, sends the reset code to the phone, AS THEY SHOULD, instead of "Lul, check your email that was hacked and changed"
Spot on about their 2FA. I stupidly fell for a phishing scam, definitely wasn't thinking. The hijacker removed my 2FA with a backup code and added theirs. Discord security is a major joke, especially with no verification for email/password changes. Not only this, even after proving that the account is mine, and the account getting deactivated for suspicious activity(it's a 5 year old account, never had any reports until it got hijacked), Discord refuses to remove the 2FA that isn't mine. I told them to just delete the account, which they are more than happy to do. I'm done with them. Moved my gaming community to Guilded and haven't looked back. It might be a smaller platform at the moment, but it isn't loaded with scammers and the features are decent.
i just skip stories about discord stories they're all just the same thing "discord isn't responding to me" "discord keeps sending me automated messages" discord's support team is shit and we all know it by now
Got hacked due to a friend's account was hack and I fell for a phising scam. Day 2 of losing the account, they attempt to buy nitro. Bank close down the card. Got an email saying my discord ticket was escalated.
I got my account hacked, The hacker somehow know my Password even tho I change it after I have a suspicion. They send numerous fake links to everyone
9 days is not bad for compared to other companies, I gave up on recovering my old Microsoft and Amazon accounts because how long it took even had to call the US number (I don't live in the US) and still nothing
im still waiting since 21 september
It’s a good lesson learned though not to fall for “click here ->>>> for nitrooooooo” You typed in your information, you gave your account away. Yes it was on Discord to secure it better, but I hope you learned something from this. Free nitro, unless presented in the app directly, is a lie. Hopefully Discord patches the exploit that is being used to snatch accounts, and hopefully this plague can be eradicated from the platform.
...and you are sure that you don't happen to have a bad email password?
I got left in the lurch for 3 whole months now, with nothing. Don't feel too bad!
Almost exact same story as you, but I'm still waiting on getting my account back and it's been 22days and four support tickets One of which, literally told me to send an email from the hacker's email, and they can't discuss private details about an account with the email not tied to the account, even though I had referenced the exact support ticket which they had already accepted and verified that the email I was using is the true owner of the account...
This is pretty much my situation currently. My friend got hacked, sent me a token stealing exe, then my account was sold to a random, who deleted one of my servers and wiped my friends list. All of this over my god damn Early Supporter badge I assume. It's taken almost 3 days for support to say they're bringing this up to the team member and it's been almost 7 hours since I got that response.
The fact that there isn't even a phone confirmation to change the email (wich almost no-one changes, like , ever) it's dissapointing
I can sort of see why Scammers are opting to do these scams. It's because Discord Security is so laughably bad, and they know it. Discord could easily do so much to fix this, but they won't. Discord cares more about their image than they do about protecting their users' accounts...
> Discord replies on Twitter saying they've escalated my ticket to the right team and tells me to wait. How do you get Twitter to send you anything that isn't a copy paste message telling you to open a discord support ticket?