Dropbox disclosed a security breach after threat actors stole 130 code repositories by gaining access to one of its employee’s GitHub account. The successful breach resulted from a phishing attack that targeted multiple Dropbox employees using emails impersonating the CircleCI continuous integration and delivery platform. The emails redirected to a phishing landing page where they were asked to enter their GitHub username and passwords. And on the same phishing page, the employees were also asked for their multi factor authentication token. Multi factor authentication adds an excellent layer of security on top of user login credentials. However like all security controls, if you implement them badly they don’t keep the bad guys out. Part of supply chain security is making sure vendors are showing evidence of having their software tested for vulnerabilities or open attack paths.
This segment was created for the It’s 5:05 podcast