Medium riskSocial Media Scams

Discord Nitro Scam

This scam spreads through Discord direct messages, often from a friend whose account has already been taken over. The message offers free Discord Nitro and includes a link to a page that looks like the Discord login. Entering your details hands over your password and account token, letting attackers take control and send the same message to your contacts. Treating unexpected free offers with caution and signing in only through the official app are the best ways to stay safe.

Quick verdict

Risk level
Medium risk
Scam type
Account phishing scam
Main red flag
A friend's message offers free Nitro through a link that opens a Discord-style login page asking you to sign in.
What to do first
Do not log in through the link. Check with your friend by another method whether they really sent it, and only sign in through the official Discord app or website.

What this scam usually looks like

This scam spreads through Discord direct messages, often from a friend whose account has already been taken over. The message offers free Discord Nitro and includes a link to a page that looks like the Discord login. Entering your details hands over your password and account token, letting attackers take control and send the same message to your contacts. Treating unexpected free offers with caution and signing in only through the official app are the best ways to stay safe.

Example message pattern

Example pattern — not a real report
Example pattern: "Hey, I've got a spare year of Discord Nitro to give away before it expires! Claim it here: [suspicious link]. Just log in with your Discord account to redeem it."

This is a fictional, anonymised example used to illustrate the pattern. It is not a verified real message, and any names are used only to show how the scam typically reads.

Red flags to watch for

  • A direct message offers free Discord Nitro or game credit and pushes you to claim it quickly through a link.
  • The link opens a login page that looks like Discord but is on a different web address than the official site.
  • The message comes from a friend but feels out of character, with odd wording or unusual urgency.
  • You are asked to log in or enter your Discord details to redeem a gift, which the real gifting feature does not require.
  • The offer claims to expire soon, encouraging you to act before you stop to check.

What to do

  • Confirm with your friend through another channel whether they actually sent the offer, as their account may be compromised.
  • Check the web address before signing in anywhere, and only log in through the official Discord app or site.
  • Hover over or inspect the link to see its true destination before clicking.
  • Report and delete the suspicious message, and let the friend know their account may have been taken over.

If you already clicked or replied

  • If you entered your details, change your Discord password immediately from within the official app, and update it anywhere you reused it.
  • Turn on two-factor authentication and check your authorised devices and sessions, logging out any you do not recognise.
  • If your account token may be compromised, changing your password helps invalidate it, so do this promptly.
  • Warn your contacts that messages from you may be fake, and report the incident through Discord's official support.

What not to do

  • Do not log in to claim a gift through a link sent in a DM, even if it appears to come from a friend.
  • Do not enter your Discord password on any page that is not the official Discord site or app.
  • Do not assume an offer is genuine because it promises something free and time-limited.

Similar scams

High risk Social Media

Hacked Friend Help Scam

A message arrives from a friend's account asking for money, a verification code, or to click a link. In reality the friend's account has been taken over, and the scammer is using your trust in them to reach you.
High risk Social Media

Instagram Verification Scam

This scam offers a blue verification badge or warns your account is at risk, then links to a fake login page that steals your password.
High risk Text Message

Two-Factor Code Text Scam

In this scam a fraudster triggers a genuine two-factor or one-time code to your phone, then poses as support staff or a contact to pressure you into reading it back so they can take over your account.

Frequently asked questions

Does real Discord Nitro gifting work this way?
Genuine Nitro gifts are sent and redeemed within Discord itself and do not require you to log in on an outside website. A link asking you to sign in elsewhere is a common sign of phishing.
The message is from a friend, so isn't it safe?
Not necessarily. These scams spread by taking over accounts and messaging the victim's contacts. Checking with your friend through another channel is the safest way to confirm whether they really sent it.
What is an account token and why does it matter?
A token is what keeps your account logged in. If attackers capture it, they may access your account without your password. Changing your password and enabling two-factor authentication help cut off that access.
I clicked the link but did not log in. Am I affected?
If you did not enter any details, the risk is lower, but it is still wise to avoid the page, run a security check, and report the message. Do not open or run anything the page tried to download.

Last reviewed: June 2026

Disclaimer: This page provides educational information only to help you recognise common scam patterns. It is not legal, financial, cybersecurity, or law enforcement advice, and it does not confirm whether any specific message, company, or person is genuine or fraudulent. When in doubt, contact the official organisation directly and report concerns to your local authorities.