Dropbox hackers steal 130 GitHub repositories

clock • 2 min read
GitHub warned about a phishing campaign relating to CircleCI just three weeks before Dropbox was breached
Image:

GitHub warned about a phishing campaign relating to CircleCI just three weeks before Dropbox was breached

A phishing attack used emails pretending to be from CircleCI to target Dropbox employees

A phishing campaign targeted file hosting service Dropbox last month, enabling a malicious actor to steal employee login details for GitHub repositories and grab 130 of the company's code repositor...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Threats and Risks

Documents outline the use of hardware hacking devices, including a malicious power bank designed to surreptitiously upload data into victims' systems

clock 23 February 2024 • 3 min read
More cash for coders: GitHub's Stormy Peters on open source funding

Open Source

'I'm passionate about making sure that people can have a career in open source software'

clock 14 February 2024 • 4 min read
Southern Water confirms customer data breach

Hacking

Stems from Black Basta attack last month

clock 14 February 2024 • 2 min read
Most read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Hacking

Cambridge University hit by DDoS attack

Cambridge University hit by DDoS attack

Anonyous Sudan claims it also hit the University of Manchester

John Leonard
clock 20 February 2024 • 1 min read
Southern Water confirms customer data breach

Southern Water confirms customer data breach

Stems from Black Basta attack last month

clock 14 February 2024 • 2 min read
Cloudflare's estate breached by suspected state-sponsored threat actors

Cloudflare's estate breached by suspected state-sponsored threat actors

The attackers exploited unrotated access token and service account credentials obtained from an Okta breach in October

clock 05 February 2024 • 2 min read