Cloud storage service Dropbox was earlier hacked and more than 68 million users’ account details were stolen and dumped online.
In 2012, the company admitted about the incident claiming that only user’s email addresses had been stolen from the cloud service breach. However, a recent report by technology website Motherboard revealed that users’ passwords were also stolen during the 2012 cyber attack.
Motherboard reported that they received four files totalling 5GB in size, which contained e-mail addresses and hashed passwords of 68,680,741 Dropbox users, from a security notification service Leakbase.
The attack was later confirmed by Troy Hunt, a security researcher and operator of the haveIbeenpwned?, a data leak database. “There is no doubt whatsoever that the data breach contains legitimate Dropbox passwords, you simply can’t fabricate this sort of thing,” said Hunt.
Dropbox has been sending notifications to all its users forcing them to reset passwords if their accounts are dated prior to mid-2012.
Dropbox's security boss Patrick Heim told Motherboard that there is no indication that Dropbox user accounts have been improperly accessed.
