A hacktivist group known as NullBulge has recently leaked a massive 1.2-terabyte data dump allegedly obtained from Disney’s internal Slack channels.

Description

The leaked data includes messages [4] [8], files [2] [3] [5] [6] [11], unreleased projects [1] [3] [4] [9] [10] [11] [12], code [1] [2] [3] [4] [5] [6] [9] [10] [11] [12], images [1] [3] [4] [5] [7] [8] [9] [10] [11], login credentials [2] [11], and links to internal websites and APIs [11]. NullBulge claims to have had inside help from a Disney insider with Slack access who had cookies, and the leak is said to include details on Disney’s planned projects and some log-in information [6]. Disney has acknowledged the breach and is currently investigating the incident, which is believed to have been motivated by issues such as Disney artist contracts [6], their approach to AI [6], and a “blatant disregard for the consumer.” Security experts have warned that corporate Slack accounts are vulnerable to attacks if compromised. NullBulge asserts that their actions are in defense of artists’ rights and against the use of AI-generated artwork. The group also operates a blog where they promote their cause and leak data. While NullBulge has been associated with the LockBit ransomware gang, this connection has been disputed by Secureworks. NullBulge has been hinting at the data leak on social media and stated that making demands of Disney would be futile [9]. Among the leaked data are internal discussions on issues such as protests from Disney employees over the company’s response to Florida’s “Don’t Say Gay” legislation [1]. Disney did not respond to inquiries on the legitimacy of the data [1]. NullBulge claims access was gained through an “inside man” at the company who was allegedly kicked out after having second thoughts [1], and the group responded by posting the employee’s personal data [1], including logins [1], credit card information [1], and Social Security Number [1]. This incident comes in the wake of other major corporations experiencing data leaks [6]. AT&T reported hackers stealing “nearly all” of its customers’ call and text records [6], as well as proprietary code, unreleased media projects [1] [3] [4] [5] [9] [10] [12], and other sensitive data [4] [5]. The hack [3] [5] [11], while significant [5], does not appear to be as severe as the 2014 Sony Pictures hack [5]. NullBulge targeted Disney due to concerns about artist contracts [7] [8], AI practices [7] [8], and consumer treatment [7] [8], using a Trojan-horse method to access the data. The leaked data dates back to at least 2019 [12]. Additionally, NullBulge claims to have obtained and leaked sensitive data from Disney [4], including traffic and revenue data for Disneyland Paris [4], details about unreleased projects [4], raw images [1] [3] [4] [9] [10], computer code [4] [9] [12], and conversations about maintaining Disney’s corporate website [4]. The leaked data also includes assessments of candidates for employment [4], programs for emerging leaders within ESPN [4], and photos of employees’ dogs [4]. Disney is currently investigating the matter [4] [5] [6] [9], and the full scope of the leaked data is yet to be determined [4]. This incident has raised concerns about the security of Disney’s vast business operations [4], which include film and television studios [4], streaming services [4], cable networks [4], theme parks [4], and more.

Conclusion

The breach by NullBulge has significant implications for Disney’s security and reputation. It highlights the importance of robust cybersecurity measures to protect sensitive data and prevent unauthorized access. Moving forward, Disney must enhance its security protocols and closely monitor its internal communication channels to prevent future breaches. Additionally, the incident underscores the growing threat of cyberattacks on large corporations and the need for constant vigilance in safeguarding valuable information.

References

[1] https://www.dailydot.com/debug/nullbulge-hackers-leak-disney-slack-hack/
[2] https://www.bitdefender.com/blog/hotforsecurity/disney-hacked-nullbulge-1-1-tb-data-internal-slack/
[3] https://www.infosecurity-magazine.com/news/hacktivists-claim-leak-of-disney/
[4] https://www.yahoo.com/news/disney-investigating-data-leak-hackers-220757985.html
[5] https://mashable.com/article/disney-plus-hack-coporate-breach-null-bulge
[6] https://www.businessinsider.com/disney-internal-slack-message-data-leaked-in-hack-2024-7
[7] https://www.hollywoodreporter.com/business/business-news/disney-hack-company-investigating-data-messages-released-1235948179/
[8] https://www.vulture.com/article/hackers-disney-slack.html
[9] https://www.cnn.com/2024/07/15/business/internal-disney-slack-leak-hacker-group/index.html
[10] https://www.abc.net.au/news/2024-07-16/disney-internal-slack-reportedly-hacked/104102620
[11] https://www.wired.com/story/disney-slack-leak-nullbulge/
[12] https://www.csoonline.com/article/2517985/disney-suffers-massive-internal-communications-data-leak-after-cyberattack.html