Dropbox Data Breach 2022 – Hackers stole 130 GitHub repositories

Dropbox has suffered a security Breach resulting in hackers stealing 130 code depositories.

Dropbox Data Breach 2022


November 2022, Dropbox have suffered a data breach. Hackers gained access to one of its GitHub accounts using employee credentials, which were gained through phishing attacks. 130 code repositories have been stolen in result of this attack. 

“To date, our investigation has found that the code accessed by this threat actor contained some credentials – primarily, API keys – used by Dropbox developers,” Dropbox said on Tuesday.

According to Dropbox, the code and data stolen included a few thousand name and email addresses, belonging to Dropbox employees, current and past customers, sales leads and vendors.

The phishing attacks leading up to the successful breach targeted Dropbox employees. Hackers were impersonating emails from CircleCI, continuous integration and delivery platform, which redirected them to a phishing landing page where employees then entered their GitHub usernames and passwords. 

On the same page, employees were also asked to type in their hardware authentication key, in order for hackers to bypass the One Time Password (OTP) they had in place.

 

Hackers Stole 130 Code Repositories During Breach

After stealing Dropbox users credentials, the hackers has gained 130 code repositories through one of Dropbox’s GitHub organisations.

Dropbox announced that the hackers didn’t gain access to customers’ accounts, passwords, or payment information, and its core apps and infrastructure were not affected as a result of this breach.

What Should You Do About This?


You’re probably hoping this never happens to your business. Well there are some steps you can take to make sure you’re secure and safe from data breaches, just like this one.

Below are a few other articles, packed with information you need to know, in order to stay safe from data breaches and cyber attacks.

 

Why Small Businesses are at Higher Risk of Cyber Attacks

All businesses are at threat from Cyber attacks, however, small businesses are at higher risk for many reasons.

How Hackers Easily Target Businesses

You might be thinking, how do hackers decide on which businesses to target? What if your business is on their list?

Most Common Types of Phishing Scams

In this video, We explain the most common types of phishing scams and how you can avoid being caught out tby them.

Get In Touch.

If you have any questions about data breaches and how your business can avoid them, feel free to contact us by calling 01158 244 824 or email us using the button below.

5.0 97 reviews

  • Avatar Nathan W. ★★★★★ 2 months ago
    Reformed IT have been beyond brilliant with helping us improve our current IT infrastructure and security. The services that they provide has taken enormous pressure off our internal … More IT team. They are always keen on sharing their knowledge and skills and always go above and beyond. I can’t recommend them highly enough.
  • Avatar Lisa S. ★★★★★ 3 months ago
    Absolutely brilliant service! Friendly, knowledgeable and really helpful without making me feel stupid for not understanding IT wizardry!
  • Avatar Debbie D. ★★★★★ 5 months ago
    Great service so far what with me being a new starter, & I've heard really positive things about Reformed IT from many of my colleagues, so I have no doubt this great service … More will continue!
  • Avatar Chloe J. ★★★★★ 9 months ago
    Reformed IT always provide excellent service and support. Since working for Walton and Allen the team have always been fast to resolve any IT issues I have had. Thank you for all of … More your help 🙂