The Walt Disney Company is reportedly moving away from using Slack after a significant data breach in July exposed over 1 terabyte (TB) of sensitive messages and files shared on its internal communication channels.
According to a report from CNBC, Disney has already started switching to new company-wide collaboration tools and informed employees via email that this transition will be completed by the end of its next fiscal quarter.
This decision follows a massive data breach in July, when a cybercriminal group, known as ‘NullBulge,’ gained access to Disney’s Slack platform and stole 1.1TB of data. The stolen information included messages and files from nearly 10,000 Slack channels, which contained details on upcoming projects, financial data, IT information, and other confidential materials.
Just a month prior, Disney experienced another security breach. This time, 2.5 gigabytes (GB) of data from Club Penguin (a former Disney game) and corporate files were leaked on the 4chan message board.
At this point, it’s not clear what communication platform Disney will use moving forward. The company may opt for another enterprise tool like Microsoft Teams, or they might develop their own internal communication software.
Platforms like Slack can be attractive targets for hackers because they often store sensitive information. In the past, other companies have faced similar issues. For example, in 2022, the hacking group Lapsus$ gained access to Uber’s Slack, where they taunted employees after the breach. More recently, in August 2023, cybercriminals hacked Activision’s Slack server, stealing employee data and information about upcoming games.
