If you have a Dropbox account, you might want to change your passwords. The online storage company is the latest to face an incursion from hackers that has put nearly 7 million usernames and passwords at public risk. The Next Web is reporting that four Pastebin files containing a teaser of a few hundred names and passwords were posted along with a request for bitcoin in exchange for the rest of the information:
A message annotated at the top of the leaks said:
Here is another batch of Hacked Dropbox accounts from the massive hack of 7,000,000 accounts
To see plenty more, just search on [redacted] for the term Dropbox hack.More to come, keep showing your support
Users in the Reddit thread allegedly confirmed the credentials in the spreadsheet worked at time of writing on multiple accounts listed, however it’s not clear where these credentials actually came from nor how many users were affected.
Safe to say that you might want to remove files, change passwords, or at least apply some two-step protections on your accounts. That or shrug into the night and continue beating off to Japanese porn with the blurry genitals. I don’t know.
Dropbox released a statement to Next Web about the situation, claiming knowledge of the attack and their response to it:
Dropbox has not been hacked. These usernames and passwords were unfortunately stolen from other services and used in attempts to log in to Dropbox accounts. We’d previously detected these attacks and the vast majority of the passwords posted have been expired for some time now. All other remaining passwords have been expired as well.
Who do you believe? Obviously keep your eyes open for updates and further leaks. Until then, laugh at the very evil hacker that Shutterstock has provided. He’s prepared to take down the entire system with nothing but his wireless net-book, all before flying to Gundor to rid Middle-Earth of the scourge of men once and for all.
(Via The Next Web / Lifehacker)