The alleged Disney hack 2024 has sent shockwaves through the tech and entertainment industries. A hacktivist group named NullBulge has claimed responsibility for a massive breach of Disney’s internal Slack infrastructure. The group has allegedly leaked 1.1 TiB (1.2 TB) of sensitive data, including messages, files, code, and more.
Alleged Disney hack 2024 explained
NullBulge made their claims on July 12, 2024, through Breach Forums, a well-known cybercrime platform. The group posted that they had accessed and exfiltrated a vast amount of data from Disney’s Slack workspace, which is primarily used by the company’s development team.
In a tweet from their official account, NullBulge stated: “Disney has had their entire dev Slack dumped. 1.1 TiB of files and chat messages. Anything we could get our hands on, we downloaded and packaged up. Want to see what goes on behind the doors? Go grab it.” The Disney data breach allegedly includes:
- Messages: Thousands of internal conversations between Disney employees, likely discussing projects, plans, and sensitive company information.
- Files: A wide array of documents, presentations, and other files shared within the Slack channels.
- Unreleased Projects: Details about upcoming Disney projects that were still under development.
- Raw Images and Code: Graphics, artwork, and source code for various projects.
- Logins and Internal Links: Credentials and links to internal APIs and web pages, potentially exposing further vulnerabilities.
Roll20 data breach confirmed by the website
NullBulge is a self-proclaimed hacktivist group with a mission to protect artists’ rights and ensure fair compensation for their work. Their official website echoes this sentiment, highlighting their commitment to standing up for creators who they believe are being mistreated by large corporations. Rumors suggest that NullBulge may be associated with the LockBit ransomware gang, as they appear to be using tools and methods similar to those leaked from LockBit.
