MAJR DAO Report: Safe Discord Practices
The Best Methods to Stay Secure and Protect Your Discord
BRIEF
What is Discord?
Common threats
Security Methods
This article was written by MAJR DAO community member NIFFTI.
What is Discord?
Discord is a free social media app used by hundreds of millions of users monthly to communicate and hangout with communities and friends. The app includes video, voice, and text chat for users 13+ years old.
As Web3 continues to grow, Discord has become a primary tool for NFT projects to interact and build their communities. Unfortunately, there are loopholes to hack Discord servers and communities which can result in the loss of funds and private information.
How can you ensure the security of your Discord server?
Common Threats
Even if you are not a server admin or moderator, it could be useful to understand the common threats that impact Discord servers. A list of these common threats along with links to their explanations include:
Use a Strong Password
The first step to ensuring your server’s security is using a strong password. This does not only apply to Discord, but instead with any account you create online. Although this step may seem obvious to some, it is often overlooked.
To form a strong password, users must incorporate alphanumeric and special characters. These include uppercase and lowercase letters, as well as numbers and unique symbols (!,$,*,@,#). The password should entertain a minimum of 12 characters and should stray away from personal information such as birth dates, common names, and more. We highly recommend 1Password, an encrypted password manager app and browser extension to store and generate strong passwords.
Enable Two-Factor Authentication (2FA)
A strong password is good, but definitely not enough to prevent hackers from breaking in. Two-factor authentication requires two separate pieces of verification to log into an account.
This method could include a fingerprint, a phone or security key, or even a pin code. This method strengthens protection against hackers outside of a strong password. We recommend using Google Authenticator or Authy.
Avoid Clicking on Unfamiliar Links
Hackers commonly attack users by sending links that look and seem official; however, they are fraudulent.Â
Servers should incorporate a verified bot that disallows links to be sent in chat. This will prevent unofficial links from being sent outside of the server admins and moderators.Â
A commonly used bot is MEE6:
Safety Reminders
Server admins should incorporate various safety reminders. This may include bots that remind members of safety protocols every so often. These reminders should be directed to your community or projects.Â
For example, a reminder to only use official links, or reminders that the moderators and admins will not direct message you first.
Never Share Personal Information
Phone numbers should be removed from Discord accounts to prevent SIM card swapping scams. Hackers use this technique to duplicate your SIM card data, giving them access to your personal data, as well as two-factor authentication messages holding private information.
Use a Virtual Private Network (VPN)
A VPN service allows individuals to change their IP address and appear to be in another area while dissociating their personal information from their account. While interacting on a public server, using a VPN will help keep user’s information private.
Join the MAJR Community
Bitcoin and crypto adoption is here to stay. Don’t let your friends and family miss the opportunity of a lifetime. For more breaking news and updates, follow us on Twitter @majr_daoWe’ve moved some content behind the pay wall. Subscribe to receive all our research and analysis.This is not financial advice. Please do your own research. Investing in bitcoin and cryptocurrency comes with risk. The information presented in this newsletter is for informational and entertainment purposes only.