Pages: [1] 
|
 |
|
 Author
|
Topic: Dropbox: Change your passwords (Read 3167 times)
|
Hawkbit
Terracotta Army
Posts: 5531
Like a Klansman in the ghetto.
|
|
|
|
|
|
Hawkbit
Terracotta Army
Posts: 5531
Like a Klansman in the ghetto.
|
|
|
|
|
|
Trippy
Administrator
Posts: 23657
|
It's unlikely Dropbox itself was hacked, though I am somewhat suspicious of them since I get spammed on one of my email accounts that I only use for Dropbox. More likely these are accounts that were hacked from other sources earlier and have now been confirmed to share the same login info as Dropbox accounts. Dropbox is resetting these accounts as fast as they are being posted so they are definitely watching what's being publicly released.
|
|
|
|
|
Trippy
Administrator
Posts: 23657
|
Dropbox's reponse: https://blog.dropbox.com/2014/10/dropbox-wasnt-hacked/Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.
Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.
|
|
|
|
|
apocrypha
Terracotta Army
Posts: 6711
Planes? Shit, I'm terrified to get in my car now!
|
<Insert obligatory exhortation to use LastPass or similar, and to use it properly>.
|
"Bourgeois society stands at the crossroads, either transition to socialism or regression into barbarism" - Rosa Luxemburg, 1915.
|
|
|
Merusk
Terracotta Army
Posts: 27449
Badge Whore
|
Last pass wouldn't matter. There's plenty of apps that now login to Dropbox to facilitate file sharing. All of them are a vulnerable point for Dropbox and you can only hope they're encrypting the info.
Past history of data and software haning gives good odds they aren't.
|
The past cannot be changed. The future is yet within your power.
|
|
|
Morfiend
Terracotta Army
Posts: 6009
wants a greif tittle
|
When I went to change my dropbox password, it wouldnt let me log in because I have two-factor turned on, and it seemed unable to text me, even though the number was correct. I got around this by going to my app and selecting account, this got me right in.  |
|
|
|
|
KallDrexx
Terracotta Army
Posts: 3510
|
Last pass wouldn't matter. There's plenty of apps that now login to Dropbox to facilitate file sharing. All of them are a vulnerable point for Dropbox and you can only hope they're encrypting the info.
Past history of data and software haning gives good odds they aren't.
It's like you didn't even read what has been posted, especially with dropbox's response. Lastpass would have mattered because users dropbox's passwords would not have been the same as services that were compromised, and thus if they got your password to another service it would be useless for accessing your google account. Also, if you are entering your drop box password into third party apps directly, then that's your bad. Dropbox uses oauth, which means the native app should never get your username or password. |
|
|
|
« Last Edit: October 14, 2014, 06:59:35 PM by KallDrexx »
|
|
|
|
|
Tebonas
Terracotta Army
Posts: 6365
|
Dropbox has Two-Step verification anyway. Another good reason to use it.
|
|
|
|
|
|
Pages: [1] 
|
|
|
 |
