Tools Used By NullBulge Actor, Who Released Disney’s Internal Slack Communications

Threat Actor: NullBulge | NullBulge
Victim: Disney | Disney
Price: Not mentioned
Exfiltrated Data Type: Internal Slack communications

Key Points :

  • The NullBulge group targeted AI and gaming communities and used innovative malware distribution techniques.
  • They compromised plug-ins and mods for AI-art applications and games through platforms like GitHub, Reddit, and Hugging Face.
  • Their campaigns involved Python-based payloads and malware tools like Async RAT and Xworm.

Source: Original Post