Dropbox Data Breach 2022 – Hackers stole 130 GitHub repositories
Dropbox has suffered a security Breach resulting in hackers stealing 130 code depositories.
Dropbox Data Breach 2022
November 2022, Dropbox have suffered a data breach. Hackers gained access to one of its GitHub accounts using employee credentials, which were gained through phishing attacks. 130 code repositories have been stolen in result of this attack.
“To date, our investigation has found that the code accessed by this threat actor contained some credentials – primarily, API keys – used by Dropbox developers,” Dropbox said on Tuesday.
According to Dropbox, the code and data stolen included a few thousand name and email addresses, belonging to Dropbox employees, current and past customers, sales leads and vendors.
The phishing attacks leading up to the successful breach targeted Dropbox employees. Hackers were impersonating emails from CircleCI, continuous integration and delivery platform, which redirected them to a phishing landing page where employees then entered their GitHub usernames and passwords.
On the same page, employees were also asked to type in their hardware authentication key, in order for hackers to bypass the One Time Password (OTP) they had in place.
Hackers Stole 130 Code Repositories During Breach
After stealing Dropbox users credentials, the hackers has gained 130 code repositories through one of Dropbox’s GitHub organisations.
Dropbox announced that the hackers didn’t gain access to customers’ accounts, passwords, or payment information, and its core apps and infrastructure were not affected as a result of this breach.
What Should You Do About This?
You’re probably hoping this never happens to your business. Well there are some steps you can take to make sure you’re secure and safe from data breaches, just like this one.
Below are a few other articles, packed with information you need to know, in order to stay safe from data breaches and cyber attacks.
Why Small Businesses are at Higher Risk of Cyber Attacks
All businesses are at threat from Cyber attacks, however, small businesses are at higher risk for many reasons.
How Hackers Easily Target Businesses
You might be thinking, how do hackers decide on which businesses to target? What if your business is on their list?
Most Common Types of Phishing Scams
In this video, We explain the most common types of phishing scams and how you can avoid being caught out tby them.
Get In Touch.
If you have any questions about data breaches and how your business can avoid them, feel free to contact us by calling 01158 244 824 or email us using the button below.