Dropbox hacked? File storage service denies 7m passwords and usernames

Joe Hall
Follow Joe
Dropbox vice president Aditya Agarwal (Source: Getty)
Cloud storage service Dropbox has denied that seven million passwords have been stolen from its service, contrary to reports.
The news came in the wake of another hacking scandal, in which up to 200,000 videos and pictures of teenage Snapchat users were leaked online.
A post on Reddit yesterday linked to a pastebin.com page which appeared to show hundreds of Dropbox username and passwords. A message attached to the list read: "To see plenty more, just search on [redacted] for the term Dropbox hack. More to come, keep showing your support."
However, Dropbox says it resets these passwords when it noticed “suspicious login activity”. In a blog post the site denied recent news articles which claimed it had been hacked, reassuring users that “your stuff is safe”.
Dropbox users can host their files across multiple devices.
The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox.
We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.
The company later added: “A subsequent list of usernames and passwords has been posted online. We’ve checked and these are not associated with Dropbox accounts.”
It recommended users refrain from using passwords across multiple accounts.
Earlier this year Dropbox hit a $10bn (£628m) valuation after receiving $250m in funding from BlackRock investment management company.

Related articles