If your business isn't using our Dark Web Monitoring Services please call us for a free scan and to discuss setting up this cutting edge monitoring service for you!
Not ready to talk yet? Visit our website to get your FREE Dark Web Scan. You will get a free, no obligation scan sent to your inbox within 24hrs. Visit today: www.denbeconsulting.com
Dropbox
Exploit: Phishing
Dropbox: File Hosting Service
Risk to Business: 2.836 = Moderate
Dropbox has revealed that they have experienced a data breach. The company noted unauthorized access to some of its repositories after a successful phishing attack. That attack resulted in someone copying 130 of its private GitHub code repositories and swiping some of its secret API credentials. Microsoft's GitHub detected suspicious behavior on Dropbox's corporate account on October 13 and informed the company. Dropbox ultimately determined the cause was a phishing attack in which bad actors impersonated the code integration and delivery platform CircleCI. Reports point out that three weeks before the attack, GitHub warned of phishing campaigns that involved the impersonation of CircleCI. Dropbox also said the intruder's access to the GitHub repo silo was revoked on October 14, and that all developer API credentials to which the intruder had access have been rotated.
How It Could Affect Your Business: Even the biggest, most tech-savvy companies can be taken down by phishing in a flash.
