Hundreds of Dropbox passwords have been leaked online to Reddit, courtesy of a massive hack. If you use Dropbox, you may want to change your password now, to avoid any harm that may come out of this event.
A post on Reddit, with files to hundreds of Dropbox usernames and passwords, has started to trend on the site. Four Pastebin files have been linked to the post, containing all the users information.
The hacker claims to have obtained over 7,000,000 Dropbox accounts, both passwords and usernames. The hacker asks for donations, in the form of Bitcoins, to leak more accounts.
A message from the hacker, above the massive password leak, reads:
Here is another batch of Hacked Dropbox accounts from the massive hack of 7,000,000 accounts.
To see plenty more, just search on [redacted] for the term Dropbox hack.
More to come, keep showing your support
Dropbox has come forth with a statement declaring that they are not to blame for the password leak, and they have not been hacked. They state that the information has been stolen from third party services.
Their statement reads:
“Dropbox has not been hacked. These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. We’d previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. All other remaining passwords have been expired as well.”
Reddit users claim the account information that has been leaked works on multiple login attempts, using the usernames and passwords listed. At the moment, it is unknown how many Dropbox users have been affected by the leak.
“It’s unclear- it could have been any service across the web where their username/password was vulnerable.”
Dropbox also claims that they performed password resets, on the accounts listed in Pasterbin files a couple months ago, after noticing suspicious activity occurring on the accounts.
Whether or not Dropbox has been hacked, there are still hundreds of passwords and usernames leaked online. No matter how you look at it, Dropbox should be held responsible for this massive online leak.