Dropbox details security breach that caused spam attack
Online storage service Dropbox has given details of a security breach that led to many of its members receiving unsolicited emails. A stolen password had been used to access an employee's accounts allowing a "project document" containing user emails addresses to be copied, it said. The US company added that usernames and passwords stolen from other sites had also been used to sign in to some of its members' accounts. It has adopted new security measures. These include automated systems to spot suspicious activity and a new page allowing users to examine earlier log-ins to their account. It has also advised users to create a unique password for each internet site and service they sign up to, and is offering its members the option to use two-factor authentication - which could involve using both a password and a code texted to their phone to gain access. The problem came to light last month after hundreds of its users complained they had received unsolicited email via the addresses they had registered their Dropbox account to. The firm said at the time that it had called in a third-party to investigate. The problem comes at a challenging time for the firm. Google recently launched Drive - its own online storage service offering more "free" space to new sign-ups who only apply for a basic service. Microsoft is promoting its rival Skydrive service by integrating it into its new Outlook.com webmail product. Apple has introduced iCloud storage to Mac owners who have downloaded its latest system.
For all latest news, follow The Daily Star's Google News channel.
Comments