Almost 7 million Dropbox usernames and passwords have been hacked, unsurprisingly via third-party services that hackers had the ability to obtain the login info from.
Those responsible leaked nearly 400 accounts to Pastebin. The hackers guarantee more accounts will be leaked in return for Bitcoin donations. The hackers claim they have over 6.9 million email addresses and passwords belonging to Dropbox users.
In a statement, Dropbox denied it was hacked:
“Dropbox has not been hacked. These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. We’d previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. All other remaining passwords have expired as well.”
This means Dropbox has now terminated the 400 logins which were leaked up to now. However, it is uncertain if the logins of the nearly 7 million other Dropbox users the hackers claim they have are still safe.
This trend of third-parties being hacked to obtain account information looks to be only growing. First it was Apple, Snapchat and now Dropbox. As more third party apps and services come out to support the current apps on the market, it opens wider holes for possible security breaches.