PBS Data Breach: Employee Information Exposed on Discord Servers
Public Broadcasting Service (PBS) has confirmed a data breach after employee information, including corporate contact details, was leaked on Discord servers. The breach exposed the personal data of over 3,997 PBS employees and affiliates, which includes name, email address, title, department, location, job functions, hobbies, and supervisor's name.
According to sources, the leak originated from an internal service used for public television employees. The data was not distributed on dark web sites or hacking forums but was instead shared among fans of "PBS Kids" servers on Discord. The young adults, teenagers, and younger kids who shared the information seem to be doing so out of curiosity, rebellion, or a desire for notoriety within their peer groups.
"It's less about exploiting the data for financial gain and more about the 'cool factor' of possessing it," said BleepingComputer. "However, the potential for misuse is obviously there." The source who shared the data with BleepingComputer expressed concern that the stolen information could draw unwanted attention to these communities designed solely for fans to discuss their favorite shows.
PBS has launched an investigation into the incident and has reached out to the affected users. "After being notified that a file containing user data from MyPBS.org, an internal service for public television employees was posted online, we launched a thorough investigation of the incident, which is ongoing," said a PBS spokesperson.
"We have reached out to the users whose information was identified as involved to inform them of this incident and at this time, there is no evidence that this incident involves any other PBS systems," continued the spokesperson. However, the breach raises concerns about how the exposed employee data could be misused for harassment or doxxing, particularly amid ongoing political scrutiny of PBS and NPR.
While the breach appears to have originated from curiosity rather than malicious intent, it highlights the risks associated with sharing sensitive information online. BleepingComputer has not learned of any malicious use of the data, but its continued circulation on Discord servers serves as a reminder for individuals to be cautious when sharing personal or organizational information.
Red Report 2025: Analyzing the Top ATT&CK Techniques Used by 93% of Malware Malware targeting password stores surged 3X as attackers executed stealthy Perfect Heist scenarios, infiltrating and exploiting critical systems. Discover the top 10 MITRE ATT&CK techniques behind 93% of attacks and how to defend against them.
Air France and KLM disclose data breaches impacting customers Cisco discloses data breach impacting Cisco.com user accounts Google suffers data breach in ongoing Salesforce data theft attacks Pandora confirms data breach amid ongoing Salesforce data theft attacks Hacker leaks 386 million user records from 18 companies for free