this post was submitted on 14 Jul 2024
588 points (98.5% liked)

Technology

59589 readers
3024 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world
588
Disney hack leads to 1.2TB of Slack communications leaked online (stackdiary.com)
submitted 4 months ago by skilledtothegills@lemmy.world to c/technology@lemmy.world
58 comments fedilink hide all child comments
 

In a significant data breach, hacktivist group NullBulge has infiltrated Disney's internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney's internal communications, compromising messages, files, code, and other proprietary information.

you are viewing a single comment's thread
view the rest of the comments
[–] 5redie8@sh.itjust.works 66 points 4 months ago (16 children)

Internal slack infrastructure

Taking this part of the description at face value anyway, this sounds like the opposite of the cloud.

That being said, I still agree with the statement

[–] bamboo@lemmy.blahaj.zone 61 points 4 months ago (15 children)

I don't think Slack has a self hosted version, and does not offer IP allow listing. There's nothing preventing someone to go to https://disney.slack.com/. I think when they say "internal" they mean for internal employees, and not like a thing for fans.

[–] UtMan1988@lemmy.world 19 points 4 months ago (6 children)

They do. You pay extra for it. You have to have apache or a web server configured for it, and a lot of space. Source: I configured one like 4 years ago.

[–] ipkpjersi@lemmy.ml 7 points 4 months ago* (last edited 4 months ago)

That sounds like user error on Disney's part then. My company uses IP whitelisting just fine.

load more comments (5 replies)
load more comments (13 replies)
load more comments (13 replies)