Hacktivist group leaks over 1TB of Disney data
Hacktivist group NullBulge has leaked over 1.1 terabytes of data from Disney’s internal Slack channels, including unreleased projects and sensitive information. Disney is investigating the breach, which highlights ongoing cybersecurity challenges.
Hacktivist group NullBulge has leaked over 1.1 terabytes of data from Disney’s internal Slack channels, encompassing files, messages, unreleased projects, raw images, and code. The group also claims to have obtained logins and links to internal APIs and web pages. Disney has confirmed to the BBC that it is investigating the hack.
NullBulge, which promotes artists’ rights and opposes AI-generated artwork, disseminates the stolen data via its blog using torrent file-sharing systems. The group’s origins and connections are disputed, with SecureWorks noting a lack of evidence for their claim of being Russian and highlighting the English language used in their communications. There are also rumored links to the LockBit ransomware gang.
Cybersecurity experts warn of the lasting impact of such breaches. Jake Moore from ESET emphasised the devastating effects of compromised email accounts, while Adam Pilton from CyberSmart cautioned against the dangerous precedent set by vigilante actions against large corporations. The incident underscores the vulnerability of even the biggest companies to cyberattacks and the persistent challenge of securing sensitive information.