Documentation of my experience with a hijacked account [SOLVED]

Commentaires

152 commentaires

  • Alpha

    Moonstone Games 

    I'm genuinely sorry that you've had to wait for such an extended period of time.

    Personally it's been quite stressful, seeing how discord was my main social platform.

    The only responses that I got were the automated one from Clyde, the escalation message from Obi, and the twitter ticket status update from discord_support. 

    I don't know if they were from actual staff or not at this stage.

    Out of curiosity, approximately when and how long did it take for you to receive your escalation message after you had replied to the automated bot message?

    2
  • Moonstone Games

    It was about 1 day after the bot message but then nothing after that.

    2
  • Spock’s Friday Nights

    Hi there. I am in the same position as you. It all started March 5th at 5:39pm when I was reached out by one my supporters via DM. It was a "try my game" malware scam which I unfortunately fell for along with 10 other of my friends. I have all of the evidence of the hackers messages and people backing me up. I have not received any other message except for Clyde. I have not gotten any email from someone saying they're escalating my ticket. I assume they're getting a lot of requests and I understand, but I am afraid of my data being deleted within the 14-30 day span. I too am hoping discord sees my friends list and my server knowing how important it was to me. 

    My support ticket is #43676737. Please, help me and Alpha. This has affected a lot of people. 

    1
  • Rozianist

    I also face the same issue, my ticket were still left open even after my account has been deleted. Hacker secretly token access my account and used my account to spam post illegal content, get me disabled and deleted with possible on watchlist. (Lost 1 years worth nitro and my IRL work).

    Alpha

    Welcome to hard truth of Discord Where Discord support doesn't give a [Redacted] even you pay nitro or has no history of violating TOS, zero tolerance my [Redacted]

    1
  • Moonstone Games

    At least you got a response. I've been sitting here for over three weeks now, waiting for them to do anything. I'm in the same boat…. I even got the escalated message and talked to discord_support, all saying the same thing.

    1
  • Tcresine

    This happened to me today. Same scenario, in fact the “game” they have you open is actually ransomware and does more than access your discord. I had the guy using my browser session deleting emails from discord support as well as soundcloud trying to cover up his tracks. Once I noticed this i pulled the plug on my pc, reformatted everything. Antivirus will not detect anything unless you have something that excels in zero-day exploit protection. This is a serious issue and just goes to show how terribly insecure your discord account is if it can be manipulated through a running process. To add some icing on the cake, they continued to use my account with my linked paypal making nitro charges until my paypal called me and blocked the charges. Not a peep from discord, and my account is still active and on a rampage. At this point discord is complicit with these criminals.

    1
  • Alpha

    Tcresine 

    Yeah, not sure when they'll address the token vunerabilities or the lack of support.

    I think I got lucky and my hijacker only used a token logger/session stealer, as none of my other accounts were touched.

    I've since wiped my browsers of sensitive data, moved logins to BitWarden, switched over to session keys over mobile 2FA, and am utilising 3rd-party software to wipe and store my discord token in an encrypted location.

    1
  • Spock’s Friday Nights

    Alpha I am doing the exact same with 2FA LMAO. That's crazy. Yeah I think I got lucky too. He only stole my discord password to charge $100 on nitro using my payment method. I had the charge reversed by the bank which is why I think Discord is not giving my account back. God knows how many other people were scammed. 

    1
  • Spock’s Friday Nights

    Alpha may I ask how you're making your discord token more secure? I would love to do the same. 

    1
  • Tcresine

    Alpha

    It's pretty ridiculous that a company that's about to go public has this much trouble identifying and preventing privacy threats as blatant as this one, tailored and targeted to their customer base and leverages their own platform from start to finish lol.

    1
  • Hotaru

    Alpha I got an escalation from the bot Grimmjow and then another escalation from a bot called Nelly the next day. That's about It.

    And yes they don't reply to anything, I have tried since the 9th last month on getting In contact with them on twitter but to no help. But tbh the more I research the more It wouldn't have mattered, as the social team on facebook said. The social teams have no power over peoples accounts nor can they share any info regarding actioned accounts ( as In you made a ticket for a hack or of the sort ). 

    They will just tell you to be patient and that you'll get a reply soon, by soon they mean whenever they get to your ticket In the queue. It could be 1 week and It could be 3 months It all depends on how many tickets they have to go through in that category. 

    Looking at my own reply time so far I'd say they are pretty filled up on tickets these days and even more now because of all the automatic bans that started happening a month ago.

    1
  • Alpha

    Rozianist 

    Sorry for the delayed response.

    I read up on what's happened to you as a result of the hijacking, and I'm truly sorry.

    Has discord really not responded to you once at all? Even after everything that's happened?

    I feel like you're entitled to a complant DM to their main twitter, or some sort of complaint on better business bureau. There's also phone numbers to their office in CA if y'd be willing to try that.

    1
  • GreenWingSpino

    @Alpha I honestly don't know why they closed my original ticket. But only sent me this.

    1
  • Kamilamiron17

    I see

    Let’s wait and pray together buddy

    1
  • GreenWingSpino

    Good to see you got your account back, Alpha. Hope everyone here and I have a chance eventually to get our accounts back. 

    I made a new follow up ticket which surprisingly didn't have Clyde respond and an immediate ticket escalation an hour later by Bell Pepper. I hope it means something good for as I've read up it's a good indicator that it has been put into the higher ups of Support to treat my case seriously which I hope that is true. 

    May I ask how do you prove an account is yours? Like sending in a screenshot of what your account looks like? I still can see mine and have the tag number next to it what it's going to look like. I also added in my details of my account about what my email was on there formerly, password, tag number, User ID, and phone number on the current ticket. I have alongside a timeline of when I was hacked and when my account went dormant detailed in. 

    1
  • Kamilamiron17

    I already did that before but still got the same response and then they closed my ticket. I didn’t link any social media to my discord because I also got hacked in the past but fortunately they didn’t change my email that time. What should I do next if they still closed my ticket? 
    Also, they delete my phone number that link to my discord. 

    1
  • Happyjunior80

    I have just sent in another ticket, and this time around Clyde bot sent a different message than my previous two attempts.

    1
  • Happyjunior80

    For my 3rd ticket I just followed Alpha’s example for the ticket, with my own spin in it. I provided images of discord confirmation req the hijacker requested in my email saying I found it in spam folder. And a bunch of images of my friends being affected. Also clyde bot’s message went from “Thanks for reaching out. We're sorry to hear that you're having trouble with your account!

    If you are still able to log in to your account or are still logged in, we recommend that you please reset your password. This will log you out of all other devices and sessions to secure your account. You can find instructions to reset your password and tips on how to protect your account below:” to “Hey there,

    Thank you for reaching out! Sorry to hear that you experienced this on our app.

    **While our team investigates this, please read through the following points:**

    1. If you created a new Discord account with the email that was previously associated with your hacked account, you will need to change the email on the new account to something else. That way the email address is available to be moved back to the original account.
    - Follow the steps here to change the email address:”. Which i assume means I am going to get help soon from actual person. I got my response from Nelly about my discord matter being investigated and it gave me my acc back. I didnt think I would get help this fast though.

    1
  • Happyjunior80

    As for the automatef message that closed my previous tickets that sounds about right. Hope you also can resolve your issue soon Blaze106

    1
  • Leon Addison1231

    So long story short I got manipulated and hacked and they have hijacked my acc, I made a ticket and I got the automated response from Clyde. After a couple days went by I made another ticket after seeing this post and tried to get my nitro cancelled, the support guy didn’t help and just marked it as solved so I made another ticket for help and support to make a inquiry about my ticket as no one was assigned to it, they just kept marking it as solved and I gave up and made a new hacked account ticket, I got the different response stating that they are getting a team to investigate but it wasn’t in the ticket it was only in my email, I also wasn’t able to fill 2 options out I could only pup if I got the email to change, I’m not sure what’s going on and I’m riddled with anxiety as the hacker is messaging my friends trying to hack them. @alpha

    1
  • Alpha

    Moonstone Games 

    Same case here.

    Just really hoping that I get lucky or something…

    Have you tried bumping your ticket yet? Its been way longer than a week.

    0
  • Alpha

    Spock’s Friday Nights 

    From what I have gathered, Discord stores your tokens in %appdata% within the Local Storage and Session Strorage folders, which the token loggers supposedly read from.

    I'm using a DiscordTokenProtector by andro2157 on GitHub, which wipes the Local/Session Storage folders and moves the contents to an encryped location.

    You can read more on the GitHub page, hope it helps!

     

    0
  • Alpha

    Tcresine 

    Eh, I won't pretend to understand any of the corpo stuff, but hopefully once the public is involved, flaws like security and support will be forced to be addressed.

    Other than that, there aren't really any social platforms quite like discord out there, so y'd say that they kinda are on top of the competition.

    0
  • Tcresine

    Update on my end:

    The hacker is still joyriding with my account almost 24 hours now and contacting my friends that I was able to warn in advance. I've sent screenshots they took and provided to discord support case. Haven't received a response from a human since the case was opened, security team hasn't even batted an eye at the situation if they're even aware of it. Pretty sure the security and support team at Discord are just a bunch of Carl-bots with human nick names at this point. I'd love for someone to prove me wrong lol

    0
  • Alpha

    It's been 10 days since discord support's last response to me.

    Honestly have no idea what the hijacker's doing with my account now

    Their twitter @discord_support did respond to me 13 hrs ago tho, so maybe give that a try

    0
  • Hotaru

    I'm In the same boat as you guys, though I haven't had a reply for about a month and a half now. Everyone that I know of that has had accounts hacked has gotten a reply around the 2 month mark, so worst case scenario get ready for a long wait. I lost everything on my account day 22 because the person that stole mine sold It off to someone else.

    I hope you guys manage to get a reply before I do.

    0
  • Alpha

    A month and a half?! My condolences

    Have you sent in another ticket or contacted discord on twitter yet?

    I did get a reply after I responded to Clyde, but I don't know if it was an actual person or another bot escalating my issue.

    0
  • Hotaru

    Alpha I have tried contacting them on social media since the 9th last month, I have been ghosted on twitter completely. I did get a reply on facebook but they said that they can't help with anything related to your account for security purposes, that's solely handled by the trust and safety team. 

    I have not made anymore tickets because doing so puts you In the back of the line of the queue again, so I'm just sitting and waiting for a “hopeful” reply soon. The only replies I have on my ticket are the 2 escalations from the first 2 days of It still. 

    Edit:

    The replies you get when responding Is bots, you'll know when It's a real person because It'll say their name on the right side of your ticket.

    0
  • Alpha

    Hotaru 

    Ghosted on both post tags and DMs?

    I'm honestly surprised that they have a Facebook page.

    First 2 escalations? Do you mean the initial bot response, followed by the escalation confirmation that is supposedly sent by a team member?

    0
  • Alpha

    Hotaru 

    So both Grimmjow and Nelly sent you somthing along the lines of this message?

    Hello,

    Thank you for providing the information about your account.

    We’ve escalated your ticket for the team to look into further. Unfortunately, we are unable to give you an estimate time of our response or answer questions about your account, but our team is actively working on these requests.

    Please note that submitting multiple reports regarding the same issue may hamper our team's investigation into your report, and slows down how quickly we can help other users.

    Thank you for your patience and a team member will get back to you when they can.

    Sincerely,

    Discord Trust & Safety

    This was sent to me by Obi Wan Kenobi, I'm unsure if its a bot or not.

    I also saw the post that you commented on where the OP got his account back via requesting for deletion, then speaking about the actual situation to the support agent they were assigned to.

    Do you think that would be a viable course of action?

     

    0

Vous devez vous connecter pour laisser un commentaire.