Dropbox, the popular cloud service, confirmed it was hacked on October 14, following a notification of suspicious activity from GitHub. These activities would have started the previous day.
Those responsible for the attack managed to steal 130 repositories of GitHub code, thanks to the account of an employee compromised following a phishing attack.
As can be read in the official release, Dropbox confirmed that the code that cybercriminals accessed contained credentials, in particular API keys, used by the company's employees.
Stolen data includes names and e-mail addresses belonging to Dropbox employees, current and previous customers, sales managers and suppliers.
In total, 130 code repositories have been stolen, however the company denies the presence of app code or top-level infrastructure, since access to those repositories is much more Restricted and Controlled.
Dropbox also claims that the attackers did not have access to customer accounts, passwords or payment details. In response to the incident, the company is strengthening the security of its environment, via WebAuthn and hardware tokens or biometric factors.