Dropbox is the latest popular service to face a security breach (again). Find out if you should be worried.
Things like this have happened lately to other Internet giants, like Yahoo and Twitter, but they were much more serious than it is in Dropbox’s case. Still, the company has decided to take more security measures before something more serious happens.
It looks like everyone’s favorite cloud storage service has escaped almost unscathed.
According to a post on the Dropbox blog, the company’s users started sending emails to customer service reps, letting them know that they were getting spam emails on addresses they were only using with Dropbox.
After some investigation, Dropbox has come to the conclusion that usernames and passwords were stolen recently from other websites and they have been used to sign in to Dropbox accounts. The company has contacted those users and helped them solve the problems.
Another account was used to get into one of Dropbox’s employee accounts containing user emails. The company thinks that was the reason for the spam.
The problem has been solved and, together with the usual “don’t use the same password on more than one site” recommendation — which a lot of users ignore, Dropbox is working on some new security features.
These include a two-factor authentication, new ways of detecting suspicious activity and a page that you can use to see active logins on your Dropbox account.
Also, if you haven’t changed your password recently, I highly recommend you do now for good measure.
I’m not saying I’m glad this happened, but the fact that Dropbox is improving security can only benefit its users.
I find it unacceptable that these only companies are only just now enabling 2 factor auth on their services. way way overdue…
Still better than waiting for something worse to happen :) They’re lucky it didn’t.
Two Factor Authentication is the way to go! Make sure to enable it on your Gmail account and any other service you use that offers it. Incredibly more secure