Embark Studios has deployed an emergency hotfix for Arc Raiders after a security researcher uncovered a flaw in the game's Discord integration that logged private messages locally. The issue involved the Discord SDK capturing and storing sensitive user data on players' machines. The studio assures players that no data left their devices and is conducting a further audit.
On March 5, 2026, Embark Studios announced a hotfix for Arc Raiders via the game's official Discord server, addressing concerns raised by distributed systems engineer Timothy Meadows. In a blog post published earlier that week, Meadows detailed "serious privacy and security violations" in the Discord integration. He found that enabling the feature in the extraction shooter caused the Discord SDK to open a full gateway connection, logging all events—including private direct messages (DMs) between users—in plaintext to local log files on the player's machine.
Meadows explained, "Rather than filtering sensitive events, the SDK logs everything it receives to disk." This included Discord DM conversations, friends list presence data, and a full Discord Bearer authentication token. He warned that such logs could be included in crash reports or accessed by other applications on the same device, potentially exposing private information to third parties.
Meadows attempted to report the issue through Embark's bug bounty program but found only a dead link, not listed in the Intigriti catalog. On his X account, he stated, "There is a pretty big security issue with @ARCRaidersGame discord sdk integration that's putting people at risk."
In response, Embark Studios posted on Discord: "The team is also working on a hotfix to address an issue where the Discord SDK logged excessive user information. Rest assured that your private and/or personal data was not sent outside your machine and Embark has not (and will not) review or keep such information. We will disable the Discord SDK logging and are conducting a deeper audit to ensure no further issues. If you have questions or concerns, please contact our support team."
The hotfix went live less than 30 minutes after the announcement, with GamesRadar's Kaan Serin confirming it resolved the problem. Meadows recommended players change their Discord passwords, avoid sharing log files, and disable the integration until resolved. Eurogamer has contacted Embark Studios and Discord for further comment.