Computer engineer Timothy Meadows has revealed a potential security issue involving ARC Raiders. According to his findings, once a Discord account was linked to the game, private direct messages could be stored locally on the user’s computer.
The researcher discovered that the game could also store full Discord authentication bearer tokens alongside those messages. In theory, this could have allowed unauthorized access to a user’s account.
Developers at Embark Studios responded quickly to the report and released an emergency hotfix. The studio explained that the Discord SDK had been «logging excessive user information», which led to the issue.
Following the update, the game no longer stores this type of data. The developers also reassured the community that the information never left users’ computers and was not transmitted to or stored on the company’s servers.
In addition to fixing the issue, the studio plans to conduct a deeper audit of the system to make sure similar problems do not appear again in the future.
Although the situation was likely unintentional, it highlights how easily games or connected services can access sensitive user information, especially when platforms like Discord are integrated across many games and devices.
As a Reminder, Nintendo announced a Direct dedicated to the new Mario movie.
