In a significant data breach, hacktivist group NullBulge has infiltrated Disney’s internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney’s internal communications, compromising messages, files, code, and other proprietary information.
I think when Disney demands an internally-hosted version of your product, then the sales team tells engineering that they’ll provide one, and mark the price up accordingly. That kind of thing doesn’t appear on the external listing for everyone else.
Why would Disney demand that?
Why would they choose slack if they want to host, maintain and be responsible for the internal chat themselves?
They choose slack because they do it for them so that they don’t have to do it themselves. That is the selling point for them.
Businesses buy cloud services, because they do not want to manage stuff themselves.
Ostensibly better opsec
deleted by creator
Your logic isn’t making sense.
The code would end up somewhere for others to use…? What?
One-off products or beta offerings are often kept private, sometimes indefinitely.
In this case, Disney is using Slack Cloud-hosted for internal communication, but I can definitely understand people interpreting it differently.
Providing Disney with an internally hostable version of Slack doesn’t require giving them the code. They can just ship them compiled binaries