Extra Bytes, Information Security

Disney Employee’s AI Tool Download Leads to Major Cybersecurity Breach

Bibbidi-bobbidi-breach.

Emory Odom

Contributing Writer

Save

In July 2024, Disney experienced a significant cybersecurity breach when employee Matthew Van Andel downloaded AI software from GitHub, which contained hidden malware. This malicious software, operated by a hacker group known as Nullbulge, infiltrated Disney’s internal systems and Van Andel’s personal accounts, leading to extensive data exposure.

The breach resulted in the leak of over 44 million internal messages, revealing sensitive company information and personal data of employees and customers. Van Andel faced severe personal repercussions, including identity theft and job loss, underscoring the profound risks associated with unauthorized software downloads.

Why It Matters: This incident highlights the critical importance of adhering to strict cybersecurity protocols within organizations. Unauthorized software installations can serve as entry points for malicious actors, leading to substantial data breaches and personal consequences for employees involved.

Malicious AI Software Download: In February 2024, Disney employee Matthew Van Andel downloaded AI software from GitHub to experiment with AI-generated images. Unbeknownst to him, the software contained malware that granted hackers access to his personal and professional accounts.

Data Breach and Exposure: The hacker group Nullbulge exploited Van Andel’s credentials to access Disney’s internal Slack channels, leaking over 44 million messages. The exposed data included sensitive customer information, employee details, and confidential company communications.

Personal Repercussions: Van Andel suffered identity theft, with his personal information, including Social Security number and financial account details, published online. Unauthorized charges were made using his credit cards, and his family’s online accounts were compromised.

Employment Termination: Following an internal investigation, Disney terminated Van Andel’s employment, alleging misuse of his company-issued device. Van Andel disputes these claims and is seeking legal recourse for wrongful termination and associated damages.

Organizational Response: In the aftermath of the breach, Disney announced plans to discontinue the use of Slack for internal communications, aiming to enhance security and prevent future incidents of a similar nature.

Go Deeper -> A Disney Worker Downloaded an AI Tool. It Led to a Hack That Ruined His Life. – WSJ

Save

February 26, 2025

☀️ Subscribe to the Early Morning Byte! Begin your day informed, engaged, and ready to lead with the latest in technology news and thought leadership.

☀️ Your latest edition of the Early Morning Byte is here! Kickstart your day informed, engaged, and ready to lead with the latest in technology news and thought leadership.