Author Topic: PSA: Change your Dropbox password.  (Read 795 times)

Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 38503
  • I ain't even mad.
    • View Profile
PSA: Change your Dropbox password.
« on: October 14, 2014, 02:45:12 am »
A bunch of valid username/passwords have been released on internets with claims they came from Dropbox and there are up to 7 million more to come.

Dropbox have just responded by force-resetting a bunch of passwords but best to get in early and reset your password yourself in case there's any downtime between release and Dropbox reset.

Also, if you use the same password in a lot of places, please don't do that and change those as well.

Doktor Howl

  • SHIT FIXER
  • One-Armed Jizz Moppers
  • Deserved It
  • **
  • Posts: 385804
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #1 on: October 14, 2014, 02:46:26 am »
Sounds like a slow night in China.   :lol:

Mesozoic Mister Nigel

  • v=1/3πr2h
  • Deserved It
  • ****
  • Posts: 687093
  • The sky tastes like red exuberance.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #2 on: October 14, 2014, 03:04:24 am »
A bunch of valid username/passwords have been released on internets with claims they came from Dropbox and there are up to 7 million more to come.

Dropbox have just responded by force-resetting a bunch of passwords but best to get in early and reset your password yourself in case there's any downtime between release and Dropbox reset.

Also, if you use the same password in a lot of places, please don't do that and change those as well.

Great.  :kingmeh:
“I’m guessing it was January 2007, a meeting in Bethesda, we got a bag of bees and just started smashing them on the desk,” Charles Wick said. “It was very complicated.”


Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 38503
  • I ain't even mad.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #3 on: October 14, 2014, 03:17:49 am »
Looks like the passwords may have been sourced from third-party services, rather than from Dropbox itself. Still probably a good opportunity to change your password.

Passwords are annoying.

N E T

  • Turbo-Charged Marmoset of Inappropriate Public Displays of Horrid Affection
  • Deserved It
  • ****
  • Posts: 18494
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #4 on: October 14, 2014, 04:54:14 pm »
Passwords are annoying.

Very true, until you get a password manager.

1Password was the best $35 I spent all year.
“There are some defeats more triumphant than victories.” - M I C H E L   D E   M O N T A I G N E

Faust

  • Tyrannical Overlord
  • Deserved It
  • *
  • Posts: 82492
  • The Greasy Strangler
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #5 on: October 14, 2014, 05:49:28 pm »
Where's the compromised list? those normally end up on pastebin, wouldn't mind checking if mine is there.

Full list isn't up, a random sample from the B's

We'll guess it's time to change the password, again.
« Last Edit: October 14, 2014, 05:53:21 pm by Faust »

Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 38503
  • I ain't even mad.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #6 on: October 15, 2014, 01:47:21 am »
Full list hasn't been released.

What it looks like this was, and what Dropbox is claiming it is, is a list of passwords compromised elsewhere, then checked against Dropbox users so they could pretend they stole them from there.

They release a small sample of these user/password combos and asked for bitcoin to release the rest (which they aren't likely to have many of).

If you want to check whether your email has been included in recent password dumps, check out https://haveibeenpwned.com/