Hacker Alleges Breach at Disney, Leaks 1.1TB of Internal Slack Data

A threat actor on BreachForums claims to have exfiltrated and leaked 1.1 TiB of data from Disney's internal Slack channels, potentially compromising sensitive information and unreleased projects. Disney has yet to confirm or comment on the alleged breach.

Slack is a cloud-based messaging platform that enables real-time communication and collaboration through channels, direct messages, and file sharing. Businesses like Disney use Slack to streamline workflows, enhance project management, and improve communication across teams.

The threat actor using the moniker “NullBulge” announced the leak with a message boasting about the extent of the data: “1.1TiB of data. Almost 10,000 channels, every message and file possible, dumped. Unreleased projects, raw images and code, some logins, links to internal API/web pages, and more!” The hacker group indicated that the data dump includes a wealth of sensitive material ideal for intelligence gathering.

The entire data package is available on BreachForums for a nominal fee of two credits, or freely via a magnet link that was posted on the threat actor's site.

The hacker mentioned that they had initially planned to continue deeper infiltration but were thwarted by an insider. In retaliation, the hackers threatened to release all personal information of the alleged insider, including logins, credit cards, and social security numbers.

Disney, a global entertainment conglomerate known for its vast portfolio of media networks, theme parks, and film studios, has not issued any statement regarding this purported breach. The absence of confirmation from Disney leaves the legitimacy of the leak unverified, yet the potential ramifications are significant.

If the data breach is authentic, the exposed data could lead to intellectual property theft, including unreleased projects falling into the hands of content piracy networks. Additionally, exposed logins and internal links to APIs and Disney’Disney'ses could provide malicious actors with crucial information about potential entry and vulnerable points in the company's infrastructure.

The compromise of internal communications may also disrupt ongoing projects and operations, particularly if sensitive strategic information is revealed, and could introduce substantial costs for Disney, associated with incident response, remediation, and regulatory scrutiny.