Earlier today, a thread appeared on Reddit offering almost 400 Dropbox usernames and passwords in plain text. with a note that over seven million accounts have been compromised in total.
Dropbox has announced on its Blog that it wasn't hacked, and the leaked passwords were stolen from a third party service.
“Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.
Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.”
Dropbox later updated the Blog and claimed that the usernames and passwords are not linked with Dropbox.
“A subsequent list of usernames and passwords has been posted online. We’ve checked and these are not associated with Dropbox accounts.”
Just to be safe and secure, I recommend to enable two-step login on each service do you use including email and cloud storages.
Which cloud service do you use?
0 comments :
Post a Comment