Quick Answer: Change your Discord password immediately at discord.com/login. If you’re locked out, use the password reset email or submit an account recovery request at dis.gd/contact. After regaining access, enable two-factor authentication and remove any unauthorized connections.
Key Takeaways
- Change your password immediately — this is the single most important first step
- Warn your friends and contacts that your account may be sending spam or phishing links
- Enable two-factor authentication after recovery to prevent repeat compromises
- Check and remove unauthorized app connections and linked accounts
- If locked out completely, Discord support typically responds within 24-72 hours
#Immediate Actions When Your Account Is Hacked
Time matters. The faster you act, the less damage can be done with your account.
#1. Warn Your Friends and Contacts
If you have access to another platform (text, email, another Discord account), notify your close contacts that your account has been compromised. Hacked Discord accounts are commonly used to send phishing links to friends — messages like “check out this game” with a malicious link. Warning them prevents the attack from spreading.
#2. Change Your Password
If you can still log in:
- Open Discord and go to User Settings (gear icon)
- Select My Account
- Click Change Password
- Enter your current password and a new, strong password
Use a password that’s at least 16 characters long, combining uppercase, lowercase, numbers, and symbols. A password manager like 1Password or Bitwarden makes this easy.
If you can’t log in because the hacker changed your password, click Forgot your password? on the login page and use your email to reset it.
#3. Enable Two-Factor Authentication
Once you’ve regained access, enable 2FA immediately:
- Go to User Settings > My Account
- Click Enable Two-Factor Auth
- Scan the QR code with an authenticator app (Authy or Google Authenticator)
- Enter the 6-digit code to confirm
Save your backup codes in a secure location. These let you log in if you lose access to your authenticator app.
#4. Check Your Email Account
If someone hacked your Discord, they may have also compromised your email. Check for:
- Password reset emails you didn’t request
- Login notifications from unfamiliar locations
- Changes to your email account’s recovery settings
Change your email password too, and enable two-factor authentication on your email account.
#5. Contact Your Bank
If you had a payment method linked to Discord (for Nitro subscriptions), check your bank or credit card statements for unauthorized charges. Contact your bank to flag the compromised card if necessary.
#6. Remove Unauthorized Connections
Go to User Settings > Authorized Apps and revoke access for any apps or bots you don’t recognize. Also check User Settings > Connections and remove any linked accounts (Spotify, Twitch, Steam, etc.) that the hacker may have added.
#7. Scan Your Computer for Malware
Many Discord hacks originate from malware — particularly token grabbers embedded in “free game” or “mod” downloads. Run a full scan with Malwarebytes or Bitdefender to ensure your system is clean.
#Recovering a Locked-Out Account
If the hacker changed your email and password, you’ll need Discord’s help.
#Submit an Account Recovery Request
- Go to dis.gd/contact
- Select Hacked Account as the category
- Provide as much identifying information as possible:
- Your original email address
- Your Discord username and user ID
- Payment receipts (if you had Nitro)
- The approximate date your account was created
- Submit the request and wait for a response
Discord support typically responds within 24-72 hours. Check your email (including spam folder) for their reply.
#After Recovery
Once Discord restores your access:
- Change your password immediately
- Enable 2FA before doing anything else
- Remove unauthorized connections and bots
- Review your servers — check if the hacker joined new servers or gave away your roles
- Check DMs — review recent messages sent from your account and apologize to anyone who received spam
#Preventing Future Hacks
#Use a Strong, Unique Password
Don’t reuse passwords across services. If your password for another site gets leaked in a data breach, attackers will try it on Discord. Use a password manager to generate and store unique passwords.
#Be Cautious with Links and Downloads
The most common Discord attack vector is a phishing link sent by a “friend” (whose account was also hacked). Never click links that promise free Nitro, game cheats, or beta access — especially if the message seems out of character for the sender.
Never download and run executable files (.exe, .bat, .js) shared through Discord, even from friends.
#Don’t Scan Unknown QR Codes
A common social engineering attack involves tricking you into scanning a QR code that’s actually a Discord login confirmation. Only scan QR codes from the official Discord app’s login screen on discord.com.
#Review Permissions Regularly
Periodically check:
- Authorized Apps — Remove bots and apps you no longer use
- Connections — Remove linked accounts you don’t need
- Server permissions — Be cautious about giving admin roles to bots from unknown sources
#Use a Dedicated Email
Consider using a separate email address for Discord that you don’t use for other services. This reduces the chance of a credential-stuffing attack succeeding.
#Troubleshooting Related Discord Issues
If you’re dealing with other Discord problems, these guides may help:
- Discord Not Opening — Fixes for when the app won’t launch
- Discord Stream No Sound — Audio issues during screen sharing
- How to Add Bots to Discord — Safe bot installation
- Discord Screen Share — Screen sharing setup and troubleshooting
#Bottom Line
If your Discord account is hacked, change your password first — that’s the single most impactful action. If you’re locked out, submit a recovery request at dis.gd/contact and be patient. After recovery, enable two-factor authentication immediately; it’s the strongest defense against repeat attacks. Going forward, never click suspicious links (even from friends), use unique passwords, and scan your computer for malware if you suspect the compromise started there.
#Frequently Asked Questions
#How do Discord accounts usually get hacked?
The most common methods are phishing links (fake “Free Nitro” or “Check out this game” messages), token grabbers embedded in downloaded files, and credential stuffing (reusing leaked passwords from other sites). Phishing is by far the most prevalent.
#Can someone hack my Discord with just my username?
No. Your Discord username alone is not enough to hack your account. Attackers need your password, your session token, or access to your email. Keep these secure and enable two-factor authentication.
#What is a Discord token and how do hackers steal it?
A Discord token is a session identifier that keeps you logged in. If someone obtains your token, they can access your account without your password. Tokens are typically stolen through malware (token grabbers) downloaded from suspicious links. Changing your password invalidates your existing token.
#How long does Discord support take to respond?
Discord support typically responds within 24-72 hours for hacked account reports. Include as much identifying information as possible (original email, user ID, payment receipts) to speed up the process. Check your spam folder for their response.
#Will enabling 2FA really protect my account?
Two-factor authentication significantly reduces the risk of account compromise. Even if someone obtains your password, they can’t log in without the code from your authenticator app. It doesn’t protect against token theft from malware, but changing your password invalidates stolen tokens.
#Should I delete my hacked Discord account and make a new one?
Only as a last resort. If Discord support can’t recover your account, or if the hacker used it to do significant damage (distributing illegal content, getting you banned from servers), a fresh start may be the best option. Otherwise, recovery and securing your existing account is preferable.
#Can a hacked Discord account affect my other accounts?
If you used the same password for Discord and other services, those accounts are also at risk. Change passwords on any service where you used the same or similar credentials. Check haveibeenpwned.com to see if your email appears in known data breaches.
#How do I check if unauthorized purchases were made on my account?
Go to User Settings > Subscriptions and User Settings > Billing to review your payment history and active subscriptions. If you see charges you didn’t authorize, contact your bank to dispute them and remove your payment method from Discord.