130 Dropbox code repos plundered after successful phishing attack | allinfosecnews.com

Nov. 2, 2022, 12:41 p.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

Dropbox has suffered a data breach, but users needn’t worry because the attackers did not gain access to anyone’s Dropbox account, password, or payment information. Instead, they grabbed code from 130 of the company’s private repositories hosted on GitHub. What was compromised? The compromised repositories contain “copies of third-party libraries slightly modified for use by Dropbox, internal prototypes, and some tools and configuration files used by the security team” – but not code for Dropbox … More →

The post …

account hijacking attack circleci code data breach data theft don't miss dropbox github mfa phishing phishing attack

More from www.helpnetsecurity.com / Help Net Security

Invicti Predictive Risk Scoring identifies highest-risk applications 7 hours ago | www.helpnetsecurity.com

ai-enabled application applications application security +15

Forcepoint DSPM safeguards sensitive information by examining data context and content 7 hours ago | www.helpnetsecurity.com

access clouds compliance context +26

Entrust protects users against fraud, phishing and other account takeover attacks 8 hours ago | www.helpnetsecurity.com

access access management account account takeover +29

Russian hackers’ custom tool exploits old Windows Print Spooler flaw (CVE-2022-38028) 8 hours ago | www.helpnetsecurity.com

0 day application applications apt +30

Netwrix 1Secure enhancements accelerate threat detection 8 hours ago | www.helpnetsecurity.com

accelerate active directory as-a-service auditing +27

Veritas enhances cyber resilience with AI-powered solutions 9 hours ago | www.helpnetsecurity.com

ai-powered ai tools artificial artificial intelligence +33

Stellar Cyber launches MITRE ATT&CK Coverage Analyzer 9 hours ago | www.helpnetsecurity.com

amp att can charge +19

Veeam acquires Coveware to boost its ransomware protection capabilities 9 hours ago | www.helpnetsecurity.com

acquisition attacks capabilities continue +22

CrushFTP zero-day exploited by attackers, upgrade immediately! (CVE-2024-4040) 12 hours ago | www.helpnetsecurity.com

attackers censys configuration configuration files +27

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Advisory Red Consultant

@ Security Risk Advisors | Philadelphia, Pennsylvania, United States

View on infosec-jobs.com

Cyber Business Transformation Change Analyst

@ National Grid | Warwick, GB, CV34 6DA

View on infosec-jobs.com

Cyber Security Analyst

@ Ford Motor Company | Mexico City, MEX, Mexico

View on infosec-jobs.com

Associate Administrator, Cyber Security Governance (Fort Myers)

@ Millennium Physician Group | Fort Myers, FL, United States

View on infosec-jobs.com

Embedded GSOC Lead Operator, Events

@ Sibylline Ltd | Seattle, WA, United States

View on infosec-jobs.com