In a significant data breach, hacktivist group NullBulge has infiltrated Disney’s internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney’s internal communications, compromising messages, files, code, and other proprietary information.
So we gonna finally accept that maybe all these cloud services aren’t that secure
Internal slack infrastructure
Taking this part of the description at face value anyway, this sounds like the opposite of the cloud.
That being said, I still agree with the statement
I don’t think Slack has a self hosted version, and does not offer IP allow listing. There’s nothing preventing someone to go to https://disney.slack.com/. I think when they say “internal” they mean for internal employees, and not like a thing for fans.
They do. You pay extra for it. You have to have apache or a web server configured for it, and a lot of space. Source: I configured one like 4 years ago.
I’ve never heard of an on prem offering, which tier is that on? None of the plans mention it? https://slack.com/pricing
Just because it’s not marketed doesn’t mean it’s not offered
I can’t find it now, but my company attempted to get that from Slack and IIRC it was an option but more expensive than they were willing to pay.
That sounds like user error on Disney’s part then. My company uses IP whitelisting just fine.
Nah.
So where we can find these data to check out?
If the content includes the Disney Vault that’d be very cool
Is Disney blaming the fans yet for this hack?
An export like this does not include private slack channels from what I know of Slack design and export mechanisms
Right, org owner
I think it would depend on the level of the account. They have that feature for compliance reasons in heavily regulated industries.
Kinda, but not even admin accounts can view/export private channels they are not a member of.
I don’t think that’s even a feature
https://slack.com/intl/en-gb/help/articles/201658943-Export-your-workspace-data
It absolutely is.
Slack must have this for compliance issues, or they would be locked out of many industries (like banking and insurance)
I had to manage a Slack migration to another org we were merging with. As the owner, normally I couldn’t even see the names of private channels, but when it came down to the migration, upgrading the account to Business+ tier, the full export included everything (private channels and DMs), which we imported into the new org.
Slack sends notifications to all Admins that the export was happening, and i’ve only seen that notification once after using Slack for 10 years.
IIRC Admins can not, but Org owners can in certain situations.
Definitely is a feature… Have personally used it.
1.5 terabytes of text is a staggering amount of data, and that is just one channel. The thought of that much ”talking" going on in one company is overwhelming.
