Dropbox Data Breach 2022 – Hackers stole 130 GitHub repositories
Dropbox has suffered a security Breach resulting in hackers stealing 130 code depositories.
Dropbox Data Breach 2022
November 2022, Dropbox have suffered a data breach. Hackers gained access to one of its GitHub accounts using employee credentials, which were gained through phishing attacks. 130 code repositories have been stolen in result of this attack.
“To date, our investigation has found that the code accessed by this threat actor contained some credentials – primarily, API keys – used by Dropbox developers,” Dropbox said on Tuesday.
According to Dropbox, the code and data stolen included a few thousand name and email addresses, belonging to Dropbox employees, current and past customers, sales leads and vendors.
The phishing attacks leading up to the successful breach targeted Dropbox employees. Hackers were impersonating emails from CircleCI, continuous integration and delivery platform, which redirected them to a phishing landing page where employees then entered their GitHub usernames and passwords.
On the same page, employees were also asked to type in their hardware authentication key, in order for hackers to bypass the One Time Password (OTP) they had in place.
Hackers Stole 130 Code Repositories During Breach
After stealing Dropbox users credentials, the hackers has gained 130 code repositories through one of Dropbox’s GitHub organisations.
Dropbox announced that the hackers didn’t gain access to customers’ accounts, passwords, or payment information, and its core apps and infrastructure were not affected as a result of this breach.
What Should You Do About This?
You’re probably hoping this never happens to your business. Well there are some steps you can take to make sure you’re secure and safe from data breaches, just like this one.
Below are a few other articles, packed with information you need to know, in order to stay safe from data breaches and cyber attacks.
Why Small Businesses are at Higher Risk of Cyber Attacks
All businesses are at threat from Cyber attacks, however, small businesses are at higher risk for many reasons.
How Hackers Easily Target Businesses
You might be thinking, how do hackers decide on which businesses to target? What if your business is on their list?
Most Common Types of Phishing Scams
In this video, We explain the most common types of phishing scams and how you can avoid being caught out tby them.
Get In Touch.
If you have any questions about data breaches and how your business can avoid them, feel free to contact us by calling 01158 244 824 or email us using the button below.
-
We've only been using Reformed IT since the start of this year but we've had a great service from them. The service desk quickly resolve any issues & Joe & Scott have … More been very proactive in increasing our IT security & offering advice on how best to configure our systems & equipment. Can't recommend them highly enough! - Reformed IT are absolutely fantastic. They consistently go above and beyond to help no matter what issue I present them with.
It is refreshing to have a provider that not only knows … More their stuff but is responsive and look to build a relationship with their client to provide a 'total package' experience. - Reformed IT are a refreshing and innovative managed IT provider. They have been hands down the most proactive and responsive IT support company we have worked with. If you take your … More IT, cyber security and networked systems seriously, ensuring continuity, resilience and a high level of response and support, then we can honestly recommend the Reformed IT approach.
- Reformed IT always provides excellent technical support. I've always found them to be reliable and effective IT support specialists. You can reach out to them for any technical … More or non technical issues, they would have an answer for everything or will get it for you in no time. I can't recommend them highly enough.
