Leaked Disney data exposes sensitive information, financials

Data leaked online this summer from Walt Disney (DIS.N) contained personal and corporate information, the Wall Street Journal reports. The leak, over a terabyte in size, included financial strategy details and sensitive information from Disney Cruise staff and passengers. Some of the exposed data contained passport numbers, visa details, and addresses, as well as private information of Disney Cruise Line passengers.

In addition to personal details, the leaked files included granular financial information, such as revenue from Disney+ and ESPN+ and park pricing offers. The breach also exposed login credentials to Disney’s cloud infrastructure.

The hacking group NullBulge is behind the data breach, releasing over 44 million messages from Disney’s Slack communications. This includes computer code, unreleased project details, and messages from thousands of Disney’s internal channels. Disney is currently investigating the breach.