Jump to Main ContentJump to Primary Navigation
Top

Got a Dropbox account? You're going to want to change your passwords

dropboxhack.jpg

Dropbox has dropped the ball.

It's come to light that hackers made off with over 60 million account details during a security breach that took place on the cloud storage service in 2012. Dropbox has since announced that it would be pushing through a password reset process for all users who haven't updated their password since mid-2012.

"This reset ensures that even if these passwords are cracked, they can’t be used to access Dropbox accounts," explains a posting on their blog, which states that they're "very sorry" the hack happened.

The story began back in 2012, after Dropbox discovered one of its employees accounts had been hacked. The employee account gave the hackers access to a large number of user email addressed, which they subsequently swiped. Dropbox didn't notice any accounts being accessed by additional parties, but users did report that they had started receiving more spam emails than usual - hinting that the emails had been passed on by the hackers.

Skip forward to August 2016, and Dropbox got word that a list of some 68 million Dropbox users' emails and passwords - stolen in that 2012 hack - had appeared 'in the wild'. Motherboard has since been passed a selection of the files, which Dropbox has confirmed as genuine. Around half of the stolen passwords appear to have been protected by Dropbox's encryption measures, meaning hackers won't have been able to access around 32 million of the passwords. 

"We've confirmed that the proactive password reset we completed last week covered all potentially impacted users," Patrick Heim, Head of Trust and Security for Dropbox, told Motherboard. "We initiated this reset as a precautionary measure, so that the old passwords from prior to mid-2012 can’t be used to improperly access Dropbox accounts. We still encourage users to reset passwords on other services if they suspect they may have reused their Dropbox password."

What do I need to do?

As far as your Dropbox account is concerned, you'll want to accept any legitimate requests from the company to reset your password. It's also a good idea to enable two-step authorisation, which helps guard against someone pinching your password and accessing your account remotely.

In addition to this, if you use the same password for all your online accounts (NEVER a good idea), you'll want to change any accounts that used the same email and password combination that you used on Dropbox. Should the details stolen by hackers appear on a darkweb market place, there's a chance someone might nab your details and plug it into software that could attempt to log in to your online accounts. 

Never use the same password for more than one site. Never share your email address more than you need to. Be cautious, and don't be an idiot. 

Related

facepalm.jpg

The 10 people you should really delete from Facebook

A6WvofByppbqaiovfbSubf3LSXmJ6I5jErgkYy49Tzo.jpg

15 Pokémon GO tips, tricks, and secrets to make you the very best

HAPPY-MAN.jpg

Your Dropbox app just became incredibly useful

More

Everyone is obsessed with these £6 earphones - here's why

They have over 25,000 5-star ratings on Amazon

by Gary Ogden
15 Aug 2017

An ode to MSN Messenger: The best instant messaging app of all time

Nothing can ever come close

by Gary Ogden
11 Aug 2017

This simple hack will make music sound louder on your iPhone

Turn that thing up to 11

by Emily Reynolds
10 Aug 2017

These 2004 Apple 'rules for success' show why the company is so huge

"Have fun, otherwise it’s not worth it"

by Tom Victor
10 Aug 2017

Facebook has launched a new feature to kill off TV and Netflix

It's trying to take over your life even more

by Dave Fawbert
10 Aug 2017

Tinder is trying to cut out one of its users' most annoying habits

It's about time

by Gary Ogden
04 Aug 2017

Facebook AI bots develop own language, start planning to murder us

Oh good. Good. This is good

by Gary Ogden
01 Aug 2017

'The Sims' is not escapism, it's the saddest game ever made

Want an escape from real life? Do anything but reinstall The Sims

by Tristan Cross
29 Jul 2017

Your old iPod could be worth a lot of money

Time to cash in?

by Tom Victor
28 Jul 2017

Here's why closing inactive iPhone apps is actually a bad idea

Well now you know

by Matt Tate
25 Jul 2017