![]() web users reusing the same login credentials) across multiple services then Dropbox’s claim that its servers have not been hacked does technically stand up,” it says. “If it’s a case of simple password cross pollination (i.e. While all logins affected have now been reset, the response from Dropbox highlights that they were indeed genuine, TechCrunch notes, despite the fact that no accounts were in fact compromised by malicious activity. All other remaining passwords have been expired as well.” We’d previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. “These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. In a previous statement to The Next Web, Dropbox further sought to quell any panic: That the credentials were taken from parties other than Dropbox will likely add fuel to the fire regarding treatment of information. Nonetheless, the breach highlights the problems associated with placing trust in centralized operations and the flexibility of sharing user data. ![]() ![]() Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox.” ![]() The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. ![]() “Recent news articles claiming that Dropbox was hacked aren’t true. Meanwhile, Dropbox has taken to its blog to reassure users that the details were not stolen directly but from third parties, and that its API and security had not been compromised at any point: The details were posted in a Pastebin document, followed by several more posts which were since revealed to be fakes. Login details to over 7 million accounts on file sharing service Dropbox have been stolen, with the hacker requesting Bitcoin for the disclosure of information. ![]()
0 Comments
Leave a Reply. |