BOOK THIS SPACE FOR AD
ARTICLE ADHacktivist group NullBulge claims to have breached Disney, leaking 1.1 TiB of internal Slack data. The leak allegedly includes messages, files, code, and more. This comes amidst breaches affecting AT&T and Ticketmaster.
A self-proclaimed hacktivist group named NullBulge, aiming to “protect artists’ rights and ensure fair compensation for their work,” claims to have breached Disney and leaked 1.1 TiB (1.2 TB) of the company’s internal Slack infrastructure. These claims were posted on the notorious cybercrime and hacker platform Breach Forums on July 12, 2024.
The breach, which is yet to be verified, allegedly contains a complete copy of the company’s Slack communications used by their development team including messages, files, and other data exchanged within the Slack workspace.
The hackers further claim the dump includes “almost 10,000 channels, every message and file possible, unreleased projects, raw images, code, logins, links to internal API/web pages, and more!”
NullBulge also used X (formerly Twitter) to announce the alleged hack, stating, “Disney has had their entire dev Slack dumped. 1.1 TiB of files and chat messages. Anything we could get our hands on, we downloaded and packaged up. Want to see what goes on behind the doors? Go grab it.”
NullBulge Group: Who, Why, and How
The origins of the NullBulge Group are unknown. However, their official website claims the group aims to protect artists’ rights and ensure fair compensation for their work. Rumours suggest that NullBulge might be linked to the LockBit ransomware gang, as they appear to be using LockBit’s leaked builder.
As for Disney, in recent years, the company has faced criticism and legal issues regarding the payment of fair shares to artists and writers. Prominent figures like Neil Gaiman have highlighted that Disney has stopped paying royalties to some writers and artists for works that include novelizations and graphic novels of Disney-owned properties. This issue affected various creators who worked on popular franchises such as “Star Wars” and “Alien.
The problem came into the spotlight when author Alan Dean Foster publicly stated that he had not received royalties for his “Star Wars” and “Alien” novels after Disney acquired the respective franchises.
Despite some high-profile settlements, many writers and artists continue to struggle to get their due payments. Organizations like the Science Fiction & Fantasy Writers of America (SFWA) have been actively campaigning for these creators, forming task forces to pressure Disney into fulfilling its financial obligations.
Hackread.com has reached out to Disney for comment. Meanwhile, VX-Underground, an online malware repository, tweeted that if proven legitimate, the hack could be the work of infostealer malware.
Nevertheless, the alleged data breach is just another in a series affecting companies based in the United States. On July 12, 2024, AT&T announced that hackers had stolen call records and text message logs of “nearly all” customers, impacting over 110 million Americans.
Meanwhile, the Ticketmaster data breach continues to cause headaches for Live Nation as hackers leaked 10 million ticketing barcodes related to top celebrities’ concerts. The hackers are demanding an $8 million ransom to stop future leaks.