Security Alert – Dropbox Confirms It Was Hacked
After a two-week investigation, the online file storage service confirms that usernames and passwords were stolen from third party Web sites and then used to access Dropbox accounts.
Dropbox has provided the following statement: "Our investigation found that usernames and passwords recently stolen from other websites were used to sign in to a small number of Dropbox accounts. We've contacted these users and have helped them protect their accounts. A stolen password was also used to access an employee Dropbox account containing a project document with user email addresses. We believe this improper access is what led to the spam."
We recommend the following steps to help keep your information secure:
- Log in to Dropbox and change your password.
- If you use the same password on other sites, be sure to change those too. It is advisable not to use the same password on multiple sites. If you do and there is a security breach at one site, all your accounts could be at risk.