After an already rough morning, Dropbox is now facing something far more menacing. After first surfacing Reddit, several Pastebin files have been found to contain hundreds of Dropbox users' usernames and passwords—and the anonymous poster claims that there are millions more to come.
According to the Next Web, the leaked lists are meant to entice users to donate Bitcoin, at which point the purported hacker will release more users' info. The message atop the list reads:
Here is another batch of Hacked Dropbox accounts from the massive hack of 7,000,000 accounts
To see plenty more, just search on [redacted] for the term Dropbox hack.
More to come, keep showing your support
In other words, you need to change your password. Now. And then make sure that two-factor authentication is turned on.
Dropbox has already sent out password reset emails to any users whose info might have been compromised, but even if that doesn't include you (yet)—better safe than sorry.
We've reached out to Dropbox for comment and will update as soon as we hear back. [The Next Web]
from Gizmodo http://ift.tt/1vpamuQ
via http://ift.tt/1vpamuQ
Blogger Comment