Former Disney employee loses job and suffers data breach after downloading AI photo tool with malware, leading to unauthorized access of workplace Slack and personal accounts

Summary

A former Disney employee, Matthew Van Andel, was hacked after downloading an AI photo tool that contained malicious software, leading to a major data breach at Disney in July. Hackers gained access to Van Andel’s workplace Slack account and threatened to release his personal information unless he complied with their demands. After Van Andel alerted Disney to the breach, the hackers released his Social Security number, Disney login credentials, and private details about his children’s Roblox accounts. Van Andel lost his job following a forensic analysis of his work computer that allegedly found unauthorized content, which he denies. The breach was part of a larger attack on Disney’s Slack accounts by a group calling itself Nullbulge, which claimed the hack was in retaliation for Disney’s use of AI and other business practices. Van Andel continues to experience attempts to access his private accounts and sought compensation from Disney for lost wages and emotional distress.