DropBox The Latest To Fall To Online Hackers

YouWhat

New member
attachment.php

A posting on pastebin has appeared containing user data of what is claimed to be nearly 7 million accounts on DropBox, this includes usernames and passwords, offered as proof of this, the user who posted this has offered up around 420 usernames and passwords.

I appears that this threat has legitimate standing and DropBox has taken action in the form of forcing every user to change their password upon successful completion of the login, and from what has been reported, any use of any app, or third party app to access the account will inform you of the password being expired.

Even though DropBox has appear to have taken action very quickly in this case, it will no doubt lead to hurt them within an already fragile industry where competition if rife and there are many competitors within the same market for your business and files.

For those users who use one password on multiple site, this could lead to further compromises on their account if their information is within the data that is now out there in the wild, and should hopefully serve as a warning to them as to how easily things online can get compromised through new exploits that are discovered on a daily basis.

As of yet Dropbox has not released any information on how this breach has occurred, nor has released any statement, but does lead to some worrying questions about them such as how they store the user information, and why are user passwords were stored in plain text format?

UPDATE

Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.

Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.

The above information was taken from the Dropbox blog, and link a 3rd party for the part of where the user and password information came from. Dropbox has said that the information that was leaked was outdated and worthless, but other sites has tried some of the leaked information for user accounts, and has verified that the information is real and they was able to access several accounts.
 

Attachments

  • dropbox.jpg
    dropbox.jpg
    9.4 KB · Views: 200
Last edited by a moderator:
Lol I know. ;)

Is a bit worrying though, first Apple and now Dropbox. Don't really like the idea of phone photos being backed up to online storage anymore.

yeah it is getting a bit silly now isn't it, not sure what dives someone to want other peoples family pics an stuff anyway
 
Its to do with third party apps though, not dropbox itself.
Dropbox has not been hacked. These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. We'd previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. All other remaining passwords have been expired as well.
Same with snapchat I might add. But because of the fappening the media is in a flap.
 
i always like how they never name the 3rd party apps. and then just out right say "DROP BOX XAX00RED!!"

its never "stupid free app hacked"
 
Aye the fappening thing is funny because everyone thinks it was a recent hack etc..
Most of the stuff that got 'leaked' was years old and from some very old 'collections'. The fact is people saw an opportunity to make money and then it just spiralled.

The media, as usual, got it wrong of course and blew it up into some bullshit thing about iCload when really the incidents happens years back... Some of the pics that got leaked weren't on any devices other than the alleged hacker's, and anyone it got traded with, as they were deleted some time ago.

Just goes to show what people believe when the media spice it up.
 
but they used the word hacked!
"one of my pet peeves btw"


i keep getting people posting on face book..

"Hackers have found a new way to hack accounts to see your pictures..
they make an account with your friends name and profile picture then send you a friend request. beware hackors!!"

How the hell is that hacking?
 
Windows is also being used to spy on people...
According to security firm iSight Partners, hackers from Russia recently gained access to sensitive NATO documents using a major flaw in Windows. The attack, which targeted data from a NATO summit last month, was reportedly part of an espionage campaign against members of the organization (such as the US, UK, France and Germany) to learn more about how it planned to react to Russia's "military intervention" in Ukraine. Furthermore, the same zero-day flaw is believed to be affecting "tens of millions of computers" that are running Microsoft's operating system -- a definite cause for concern. The great news, however, is that he Redmond-based technology titan is now aware of this security flaw and will be patching it today, the company told Bloomberg in a statement.

For its part, iSight Partners states the Russian hackers were trying to get so much data, so quick, that they made enough mistakes to shed light on spying efforts that have been ongoing for the past two years. "There are only a few people in the world who would be really interested in this stuff and would have the tools to get it," iSight Partners' Senior Manager for Cyber-espionage Threat Intelligence, John Hultquist, said to Bloomberg. "It's just the nature of the game."

Use Linux to be sure. :)
If you do use Windows, be sure to update immediately.
 
Windows is also being used to spy on people...
According to security firm iSight Partners, hackers from Russia recently gained access to sensitive NATO documents using a major flaw in Windows. The attack, which targeted data from a NATO summit last month, was reportedly part of an espionage campaign against members of the organization (such as the US, UK, France and Germany) to learn more about how it planned to react to Russia's "military intervention" in Ukraine. Furthermore, the same zero-day flaw is believed to be affecting "tens of millions of computers" that are running Microsoft's operating system -- a definite cause for concern. The great news, however, is that he Redmond-based technology titan is now aware of this security flaw and will be patching it today, the company told Bloomberg in a statement.

For its part, iSight Partners states the Russian hackers were trying to get so much data, so quick, that they made enough mistakes to shed light on spying efforts that have been ongoing for the past two years. "There are only a few people in the world who would be really interested in this stuff and would have the tools to get it," iSight Partners' Senior Manager for Cyber-espionage Threat Intelligence, John Hultquist, said to Bloomberg. "It's just the nature of the game."

Use Linux to be sure. :)
If you do use Windows, be sure to update immediately.

Computers are gonna cause a war. :eek:
 
Back
Top