Forgot password
Enter the email address you used when you joined and we'll send you instructions to reset your password.
If you used Apple or Google to create your account, this process will create a password for your existing account.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Reset password instructions sent. If you have an account with us, you will receive an email within a few minutes.
Something went wrong. Try again or contact support if the problem persists.

Security PSA: Dropbox Passwords Leak on Reddit, Change Yours Now

This article is over 10 years old and may contain outdated information
Dropbox Logo 310x

Dropbox says it was not breached, leaks came from third-party app service.

The Next Web is reporting that “hundreds” of Dropbox passwords were posted on Pastebin, then Reddit, after what’s being called a third-party app security breach.

A post on the r/SysAdmin subreddit links to a Pastebin post, which reportedly contains the emails and passwords of 400 users. What’s worse is the preamble in the Pastebin post, which reads:

***** DROPBOX HACKED *****

6,937,081 DROPBOX ACCOUNTS HACKED
PHOTOS – VIDEOS – OTHER FILES

MORE BITCOIN = MORE ACCOUNTS PUBLISHED ON PASTEBIN
As more BTC is donated , More pastebin pastes will appear
To find them, simply search for [redacted] and you
will see any additional pastes as they are published.

Nearly seven million Dropbox accounts are being threatened, although Dropbox is denying the scope of the security compromise. “Dropbox has not been hacked,” said the company in a statement to the press. “These usernames and passwords were unfortunately stolen from [third-party] services and used in attempts to log in to Dropbox accounts.”

Dropbox confirmed that it had reached out to the several hundred affected users, issuing password resets in all cases.

Like in the case of the leaked Gmail passwords, it’s better to err on the side of caution in such matters, yes? So if you’re a Dropbox user like myself, a password change is strongly recommended. Furthermore, if you aren’t using two-step authentication on your Dropbox account already, now would be a good time to turn it on (see directions here).

Sources: The Next Web | Lifehacker

Recommended Videos

The Escapist is supported by our audience. When you purchase through links on our site, we may earn a small affiliate commission. Learn more about our Affiliate Policy