1. Anthony Bouchard's Avatar

    Some anonymous hackers claim to have hacked Dropbox and stolen the credentials of more than 7,000,000 user accounts Monday evening. As The Next Web reports, four different PasteBin text files were uploaded to Reddit with previews to the leaked credentials; some of the logins reportedly work, while some do not.

    Dropbox was quick to issue an official statement saying that the online storage giant was not actually hacked and that the information came from third-party, un-related services. Dropbox also promises that user information and files are safe:

    Recent news articles claiming that Dropbox was hacked aren’t true. Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.

    Attacks like these are one of the reasons why we strongly encourage users not to reuse passwords across services. For an added layer of security, we always recommend enabling 2 step verification on your account.

    Update: 10/14/2014 12:30am PT

    A subsequent list of usernames and passwords has been posted online. We’ve checked and these are not associated with Dropbox accounts.
    In the mean time, the hackers that have allegedly taken these usernames and passwords from Dropbox have been sitting back and accepting Bitcoin donations while promising to continue to leak additional credentials. Dropbox, on the other hand, notes that these credentials are not even for Dropbox, and for any that are, they have been expired for some time.

    To be on the safe side, you should make sure that you change your Dropbox password. You also may want to make sure that your other online services utilize different passwords from your Dropbox account so that you don't end up getting compromised somewhere down the line.

    Although Dropbox claims not to have been hacked, there's no telling where these credentials (where some of them reportedly work) actually came from.

    Sources: The Next Web
    2014-10-14 05:20 PM
  2. SpiderManAPV's Avatar
    So basically I'm hearing the same thing that happened to Apple except with tons more accounts? And much more information than a few nude selfies? And everyone downplaying it because it isn't Apple?

    Just your friendly neighborhood Spider-Man!
    2014-10-14 05:46 PM