WSJ Tech News Briefing: A Disney Worker, an AI Tool, and the Hack That Ruined His Life

Release Date: March 5, 2025
Host: Charlotte Gartenberg
Reporter: Robert McMillan

Introduction

In the March 5, 2025 episode of WSJ Tech News Briefing, host Charlotte Gartenberg delves into a harrowing cybersecurity incident involving a Disney employee, an artificial intelligence (AI) tool, and a subsequent hack that not only compromised personal data but also exposed sensitive company information. Reporter Robert McMillan provides an in-depth analysis of the events, their repercussions, and offers valuable cybersecurity insights for listeners.

The Disney Hack: How It Unfolded

Charlotte opens the discussion by presenting a nightmare scenario where the integration of an AI tool intended to streamline workflow backfires disastrously.

Charlotte Gartenberg [00:33]: "It's a bit of a nightmare scenario. You download an artificial intelligence tool to make your workflow easier, but instead you get hacked."

Robert McMillan elaborates on the mechanics of the hack:

Robert McMillan [02:17]: "It happened on GitHub... the hacker had created a plugin for an AI tool called ComfyUI. This plugin was a Trojan horse, appearing benign but actually malicious."

The hacker exploited this plugin to infiltrate Matthew Van Andle’s personal computer, leading to unauthorized access to his 1Password account and, consequently, Disney’s Slack communications.

Impact on Matthew Van Andle

Matthew Van Andle, affectionately known as "Dutch," was a mid-level technology manager at Disney, deeply invested in exploring AI applications within his work.

Robert McMillan [01:38]: "A lot of people call him Dutch... he's a very earnest guy who was interested in the field of artificial intelligence."

The personal ramifications for Van Andle were severe:

Robert McMillan [03:45]: "It was a nightmare. The hacker not only stole his identity and committed identity theft but also accessed his work Slack account and dumped his digital life online."

His failure to enable two-factor authentication on his 1Password account exacerbated the situation, providing the hacker unrestricted access once the Trojan was deployed.

Disney's Response and Consequences

Following the breach in July of the previous year, Disney faced significant backlash as over a terabyte of data, including more than 44 million Slack messages, was leaked online. This data encompassed sensitive information about theme park and streaming revenues, customer details, and employee information.

Robert McMillan [05:35]: "Disney said that they were investigating and they didn't expect it to have material impact on its operations."

In the aftermath, Disney decided to transition away from Slack to more secure collaboration tools. However, the incident had immediate personal consequences for Van Andle.

Robert McMillan [05:54]: "Disney claimed that he accessed inappropriate websites on his work device... he denied these allegations and was subsequently fired."

Cybersecurity Insights: Protecting Yourself Against Similar Threats

The discussion shifts to broader cybersecurity challenges and strategies to mitigate such risks. Robert McMillan provides expert insights:

Robert McMillan [07:09]: "Cybersecurity has always been difficult to protect against... any determined hacker can get you if you make one mistake."

He emphasizes that while absolute security is unattainable, taking proactive measures can significantly reduce vulnerability.

Practical Advice from the FBI

Drawing from FBI recommendations, Robert outlines actionable steps:

1. Avoid "Remember Me" Features on Sensitive Sites:

   Robert McMillan [09:32]: "Don't click that checkbox... it creates a file on your computer that allows anyone to log into that website."

2. Implement Two-Factor Authentication (2FA):

   Robert McMillan [09:55]: "Use software like Authenticator that runs on your phone and generates a code as the second factor."

3. Use a Dedicated Device for High-Security Activities:

   Robert McMillan [10:52]: "Have one computer that you just use for your banking and don't download plugins to it."

These steps aim to create multiple layers of defense, making it harder for hackers to exploit vulnerabilities.

Conclusion

The episode underscores the intricate relationship between emerging technologies like AI and cybersecurity. It highlights the importance of vigilance, especially for individuals in tech-savvy roles, to safeguard both personal and organizational data. By following the recommended security practices, users can better protect themselves against the ever-evolving landscape of cyber threats.

Produced by Jess Jupiter with Supervising Producer Katherine Millsop.