Data security news & resources

Between misconfigured permissions, account hijacking, and the bring your own AI phenomenon, it’s easy to see why almost half of organizations suffered a cloud data breach in 2024.  Until recently, protecting data in the cloud felt like trying to hit a moving target. With so many cloud applications, dispersed users, and data ever proliferating, maintaining […]

Disney is set to abandon Slack following a significant data breach that occurred in July, which exposed over 1TB of confidential messages and files from the company’s internal communication channels. Internal emails shared reveal that Disney has commenced the transition to new “streamlined enterprise-wide collaboration tools,” with plans to complete the migration by the end […]

A hacktivist group has leaked over one terabyte of data from Disney’s internal Slack channels. Here’s everything we know so far.  Who’s responsible?  The attacker group is calling itself NullBulge. They allege that they stole 1.1 TiB of data from 10,000 internal Disney Slack channels.  “1.1TiB of files and chat messages. Anything we could get […]

Last week, a security researcher discovered that the workplace communications platform Slack trains its AI models using customer data. Worse still, all Slack users are opted-in by default.  Naturally, the revelation led to uproar amongst the Slack community, with many people concerned about improper usage of their personal data. However, all is not what it […]

In the last ten years, Slack has soared in popularity as a critical workplace tool. Praised as the cornerstone of employee efficiency, it’s hailed for its speed, ease of use, and instant communication capabilities, enabling teams to bypass the formality and delays often associated with email. However, alongside its productivity and collaboration benefits, organizations must […]

In today’s fast-paced legal landscape, Slack has emerged as the go-to collaboration app for law firms worldwide. However, legal personnel often make a few all too common mistakes with this app that expose their companies to compliance gaps and hinder their ability to effectively manage sensitive information. Below, we’ll explore these mistakes in detail, offering […]

Software-as-a-service (SaaS) platforms are wonderful for boosting employee productivity and collaboration. Apps like Slack, Microsoft Teams and Google Workspace are essentially a prerequisite in the modern workplace, facilitating remote and hybrid work setups, while empowering employees to enhance efficiency.  However, while executives and employees love SaaS, security teams often have a different opinion. These apps […]

SaaS security solutions like cloud access security brokers (CASB) and cloud-based data loss prevention (DLP) have become a must-have to prevent data leakage and exfiltration in popular cloud apps like Slack, Google Workspace and Office 365.  In theory, these tools give security administrators much needed visibility and control over the sensitive information that resides in […]

We all know that cloud apps like Slack, Teams and Google Workspace are the backbone of modern business. But they’re also a huge risk to compliance and security.  Research shows that the average company has a $28 million data breach risk because of exposed data in SaaS environments. Risks like data leakage, compromised credentials and […]

Zero trust. You know it’s important. You know you want to implement it in your organization. And you know it could make Slack way more secure – especially given the recent Uber breach! But there’s a problem. Moving from concept to reality is proving mighty difficult.  You’re not alone.  96% of security decision-makers state that […]

In September 2022, tech giant Uber had to shut down its company Slack channels after a malicious actor sent a Slack message to multiple employees, stating: “I am a hacker.” Yikes!  This incident isn’t the first time hackers have leveraged Slack in a cyber-attack, and we’ve got a feeling it certainly won’t be the last.  […]