"Discord is evolving its approach to embedded CDN URLs to create a safer and more secure experience for users. In particular, this will help our safety team restrict access to flagged content, thereby reducing the amount of malware distributed through our CDN," Discord said.
“There is no impact to Discord users sharing content in the standalone client. Any links in the client will be automatically refreshed. If a user is using Discord to host files, we recommend they find a more suitable service.”
Meanwhile, the messaging platform said it will continue to “work closely with the developer community on the transition” going forward.
Specifically, after the file storage change is implemented later this year, all links to data uploaded to Discord servers will expire (disable) after 24 hours. This makes it impossible for users to use Discord's CDN to store files permanently as before.
This is a much-anticipated move to address the cybercrime challenges Discord has faced on its platform, with its servers long a breeding ground for malicious activity.
Discord's permanent file storage capabilities are frequently abused to spread malware and steal data collected from compromised systems using webhooks.
According to a recent report by cybersecurity firm Trellix, Discord's CDN URLs have been exploited by at least 10,000 malicious activities that deliver malware to infected systems, including malware downloaders, malware installation scripts, and more.
According to Trellix data, various malware families, including Agent Tesla, UmbralStealer, Stealerium, and zgRAT, have also used Discord webhooks over the past few years to steal sensitive information such as credentials, browser cookies, and cryptocurrency wallets from compromised devices.
(According to BleepingComputer)
'Black Monday' in Germany: Malware disrupts public services in 70 localities
A ransomware attack has created a 'Black Monday' in several German cities and regions, severely disrupting public services of local authorities.
Malware attacks large-scale Latin American telecommunications systems
Chilean telecommunications company Grupo GTD - a service provider to customers across Latin America, has just suffered a large-scale malware attack that has severely disrupted its operations.
Sharp increase in number of computers in Vietnam infected with malware that steals Facebook accounts
Bkav's malware monitoring and warning system has recorded an increase in the number of computers infected with the Fabookie malware, which specializes in stealing Facebook Business accounts.
Source
Comment (0)