Dropbox hacked?

You probably have read on news portals that Dropbox was hacked and that some user accounts were compromised.

Here is the alleged list of leaked user information. Dropbox is saying that the data is not valid.

My company offers consulting on how to prepare for TISAX, ISO27001, NIS2, CSMS and SOC2 audits.
Get in touch with us here: https://www.endpoint-cybersecurity.com/contact/

Apparently, Dropbox was not hacked. The company is clearly stating this on their blog.

Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.

Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.

 

I can only confirm and support this suggestion. In the “Improve your security” free eBook is explained how to enable two-factor authentication for several services, including Dropbox and Google Mail.

 


© Copyright 2014 Sorin Mustaca, All rights Reserved. Written For: Sorin Mustaca - Security & Technology


Want to work with me on this topic?
Check Endpoint Cybersecurity to see the consulting services we offer.

Related Posts

Truecrypt shutdown – 5 questions that must be asked

If you visit www.truecrypt.org you see this text below. If you install the software, you see it quite a couple of times. The domain www.truecrypt.org  is only redirecting now to www.truecrypt.sourceforge.net. My company offers consulting on how to prepare for TISAX, ISO27001, NIS2, CSMS and SOC2 audits. Get in touch with us here: https://www.endpoint-cybersecurity.com/contact/ There are many articles […]

What’s the difference between Intrusion Prevention Systems and(IPS) and Web Application Firewall?

I was asked a few times what is the difference between HIPS, NIPS, IPS, Application Firewall.  I did research a bit about this and started to write something. But, then I found this great article (see below at the resources) which describes everything perfect. Also read my own conclusions at the end of the article. […]

AI Security Best Practices for technical and non-technical people

AI Security Best Practices: What Every Employee Needs to Know A summary of an AI Security Policy — covering the risks that matter, with real examples of what goes wrong when they are ignored. AI tools are now part of everyday work — writing, coding, summarizing, automating. That is not going to change. But most […]