Dropbox Smeared in Week of Megabreaches

  • 3 June 2016
  • 3 replies
  • 274 views

Userlevel 7
Badge +54
2nd June 2016
 
Last week, LifeLock and several other identity theft protection firms erroneously alerted their customers to a breach at cloud storage giant Dropbox.com — an incident that reportedly exposed some 73 million usernames and passwords. The only problem with that notification was that Dropbox didn’t have a breach; the data appears instead to have come from another breach revealed this week at social network Tumblr.
 
Today’s post examines some of the missteps that preceded this embarrassing and potentially brand-damaging “oops.” We’ll also explore the limits of automated threat intelligence gathering in an era of megabreaches like the ones revealed over the past week that exposed more than a half billion usernames and passwords stolen from Tumblr, MySpace and LinkedIn.
 
Full Article

3 replies

Userlevel 7
Ouch...given the reach and popularity of Dropbox, not only amongstnthe public but also in a corporate context, this news must be worrying for users and must hurt the company itself.
Userlevel 7
Badge +3
Graham Cluley | June 3, 2016     
 
  Don't believe everything bad you read on the internet.     
 
A lot of people use Dropbox.
A lot of people put a lot of valuable, sensitive and personal data inside Dropbox.
A lot of people make the mistake of not encrypting their valuable, sensitive and personal data before they put it inside Dropbox.
Which all adds up to a whole heap of trouble if Dropbox suffers a data breach.   
 
 https://www.grahamcluley.com/2016/06/huge-dropbox-password-leak-wasnt/
Userlevel 7
But apparently, Dermot, one cannot believe all that is good on the Internet...as apparently the breach was in fact...a breach...it is just how one looks at what happened.
 
So I suspect that it boils down to taking most of what is read on the Internet with a pinch of salt...or that healthy skepticism is probably the best approach. ;)

Reply