Dropbox, the popular cloud storage company, dumped more than 68 million of its user’s passwords and email addresses.
The move is the company’s answer to the hacking attack which took place four years ago where Dropbox claimed that a number of their user’s emails had been stolen. At that time, Dropbox didn’t report passwords were also stolen. The breach is said to be a result of the reuse of a password that a Dropbox previously used on Linkedin. It wasn’t that long when the professional network suffered the same fate.
Four years ago, Dropbox had reset some of its user’s passwords, but didn’t give a specific number. Last week, Dropbox sent notifications to their users who have not changed their account passwords since 2012.
Dropbox representative issued a statement saying that there is no proof that their user’s accounts were improperly accessed. The firm’s analysis confirms that the documentation contains email addresses with hashed and salted passwords that were obtained before the year 2012. The company attests the scope of the password resets that they’ve completed to protect a of their users.
The infringement emphasizes the need for tight security, both at the user and the company’s end. Top security experts recommend using reliable password managers.
