Tuesday, March 5, 2019
Home / Security / Breaches / Third Party hacked exposing 7 million Dropbox accounts

Third Party hacked exposing 7 million Dropbox accounts

Almost 7 million Dropbox usernames and passwords have been hacked, unsurprisingly via third-party services that hackers had the ability to obtain the login info from.

Those responsible leaked nearly 400 accounts to Pastebin.  The hackers guarantee more accounts will be leaked in return for Bitcoin donations. The hackers claim they have over 6.9 million email addresses and passwords belonging to Dropbox users.

In a statement, Dropbox denied it was hacked:

“Dropbox has not been hacked. These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. We’d previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. All other remaining passwords have expired as well.”

This means Dropbox has now terminated the 400 logins which were leaked up to now. However, it is uncertain if the logins of the nearly 7 million other Dropbox users the hackers claim they have are still safe.

This trend of third-parties being hacked to obtain account information looks to be only growing.  First it was Apple, Snapchat and now Dropbox.  As more third party apps and services come out to support the current apps on the market, it opens wider holes for possible security breaches.

About FastFlux

Owner of ZeroSecurity, interested in programming, malware analysis and penetration testing. If you would like to write for the ZeroSecurity team, please use the contact form above.

Check Also

Amazon hacked – hacker leaks 80,000 login credentials

A hacker going by the name 0x2Taylor has said to have breached the servers of …