Disney hack leads to 1.2TB of Slack communications leaked online

Submitted ⁨⁨3⁩ ⁨months⁩ ago⁩ by ⁨skilledtothegills@lemmy.world⁩ to ⁨technology@lemmy.world⁩

https://stackdiary.com/disney-hack-leads-to-1-2tb-of-slack-communications-leaked-online/

In a significant data breach, hacktivist group NullBulge has infiltrated Disney’s internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney’s internal communications, compromising messages, files, code, and other proprietary information.

source

Comments

Sort:hotnew top

KingThrillgore@lemmy.ml ⁨3⁩ ⁨months⁩ ago
So we gonna finally accept that maybe all these cloud services aren’t that secure

source
- 5redie8@sh.itjust.works ⁨3⁩ ⁨months⁩ ago
  
  Internal slack infrastructure
  
  Taking this part of the description at face value anyway, this sounds like the opposite of the cloud.
  
  That being said, I still agree with the statement
  
  source
  - bamboo@lemmy.blahaj.zone ⁨3⁩ ⁨months⁩ ago
    I don’t think Slack has a self hosted version, and does not offer IP allow listing. There’s nothing preventing someone to go to disney.slack.com. I think when they say “internal” they mean for internal employees, and not like a thing for fans.
    
    source
    -> View More Comments
- sugar_in_your_tea@sh.itjust.works ⁨3⁩ ⁨months⁩ ago
  Nah.
  
  source
PrivateNoob@sopuli.xyz ⁨3⁩ ⁨months⁩ ago
Good. Based for Nullbulge that they have released the source for free. Their motive is to put pressure on Disney due to their wrongdoings against creative artists.

source
- Petter1@lemm.ee ⁨3⁩ ⁨months⁩ ago
  What source?
  
  source
  - PrivateNoob@sopuli.xyz ⁨3⁩ ⁨months⁩ ago
    I don’t remember, but here is their website with a magnet link for the source: nullbulge.se/blog.html
    
    source
    -> View More Comments
kate@lemmy.uhhoh.com ⁨3⁩ ⁨months⁩ ago
Huh, I looked through the website of the hacking team and they use slurs and talk about posting on 4chan, it’s not a great look for a group trying to get on the good side of creative peoples imo

source
- kate@lemmy.uhhoh.com ⁨3⁩ ⁨months⁩ ago
  Plus in their blog post they mention that they haven’t read through most of the leaks themselves so they don’t even know what kind of info they might be posting about potentially unrelated people, in an attack on “AI” that won’t stop disney even a little bit. Like, I understand the desire to help creative people but I don’t see how this is doing that
  
  source
  - JasonDJ@lemmy.zip ⁨3⁩ ⁨months⁩ ago
    If you’re a grey-hat/chaotic-good hacker intent on exposing corporate greed or whatever, with a cache like that, you’ve got a couple options…either release inmediately, or review the data to minimize collateral damage and release.
    
    If the intent was to help people, and there was no driving force to release immediately, then they should’ve waited and reviewed the data.
    
    I really worry if this is going to lead to my overly-ambitious infosec group putting the kibash on our unofficial/shadow-IT (fully internal) MatterMost.
    
    source
    -> View More Comments
  - kate@lemmy.uhhoh.com ⁨3⁩ ⁨months⁩ ago
    also while I am on my soap box, ai-bro and crypto-bro are gendered insults and we should do better
    
    source
    -> View More Comments
- Tattorack@lemmy.world ⁨3⁩ ⁨months⁩ ago
  A lot of hacker groups originated on 4chan.
  
  source
Doorbook@lemmy.world ⁨3⁩ ⁨months⁩ ago
So where we can find these data to check out?

source
MNByChoice@midwest.social ⁨3⁩ ⁨months⁩ ago
So many passwords will be in there. And cat photos.

source
- sheogorath@lemmy.world ⁨3⁩ ⁨months⁩ ago
  Passwords and lotsa creds. I know an infra engineer who stores all of the keys to the projects he’s involved in his message to self Slack. When I asked him about it he told me ‘when I found out that the company billed my time 5x my salary to clients I stopped caring’ and I was like OK that’s fair ¯\_(ツ)_/¯
  
  source
  - douglasg14b@lemmy.world ⁨3⁩ ⁨months⁩ ago
    Depends. Our engineering slack doesn’t contain secrets for a few reasons:
    
    Secret scanning
    
    We have a /secret bot that will take your secret, store it securely, and then present a GUI for each person with access to display that secret “for just that person”. And then after a set period of time it’s made inaccessible, and wiped from the infra.
    
    Training and knowledge transfer on secret security
    
    source
    -> View More Comments
- ArbiterXero@lemmy.world ⁨3⁩ ⁨months⁩ ago
  And jokes about meatball Ron
  
  source
Evotech@lemmy.world ⁨3⁩ ⁨months⁩ ago
An export like this does not include private slack channels from what I know of Slack design and export mechanisms

source
- ArbiterXero@lemmy.world ⁨3⁩ ⁨months⁩ ago
  slack.com/…/201658943-Export-your-workspace-data
  
  It absolutely does
  
  source
  - Evotech@lemmy.world ⁨3⁩ ⁨months⁩ ago
    Right, org owner
    
    source
- paf0@lemmy.world ⁨3⁩ ⁨months⁩ ago
  I think it would depend on the level of the account. They have that feature for compliance reasons in heavily regulated industries.
  
  source
  - Evotech@lemmy.world ⁨3⁩ ⁨months⁩ ago
    Kinda, but not even admin accounts can view/export private channels they are not a member of.
    
    source
    -> View More Comments
pavnilschanda@lemmy.world ⁨3⁩ ⁨months⁩ ago
If the content includes the Disney Vault that’d be very cool

source
0x0@programming.dev ⁨3⁩ ⁨months⁩ ago
Is Disney blaming the fans yet for this hack?

source
mobilehugh@lemmy.ca ⁨3⁩ ⁨months⁩ ago
1.5 terabytes of text is a staggering amount of data, and that is just one channel. The thought of that much ”talking" going on in one company is overwhelming.

source