[SingCERT] Leaked Dropbox Passwords

Published on Tuesday, 14 October 2014 17:02

[ Background ]

Online reports have revealed that some Dropbox accounts have been compromised. According to Dropbox’s media statement, the usernames and passwords were stolen from other services and they have since reset the "small number" of affected accounts.

[ Recommendations ]

As a precautionary measure, Dropbox users should consider the following actions to safeguard your information:

  • Change your Dropbox passwords as soon as possible. If other accounts share the same password as your Dropbox account, it's recommended to change the passwords of those accounts as well.
  • Enable 2-factor authentication (2FA) for your Dropbox account. For more information on enabling 2FA in Dropbox, please refer tohttps://www.dropbox.com/help/363
  • Be selective of using your Dropbox account to sign in to third party services.

[ References ]