Author Topic: PSA: Change your Dropbox password.  (Read 1144 times)

Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 2925
  • I ain't even mad.
    • View Profile
PSA: Change your Dropbox password.
« on: October 14, 2014, 02:45:12 am »
A bunch of valid username/passwords have been released on internets with claims they came from Dropbox and there are up to 7 million more to come.

Dropbox have just responded by force-resetting a bunch of passwords but best to get in early and reset your password yourself in case there's any downtime between release and Dropbox reset.

Also, if you use the same password in a lot of places, please don't do that and change those as well.

Doktor Howl

  • Вся ваша база принадлежит нам
  • One-Armed Jizz Moppers
  • Deserved It
  • **
  • Posts: 32743
  • Horrible Bastard
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #1 on: October 14, 2014, 02:46:26 am »
Sounds like a slow night in China.   :lol:
Quote
"Here is the story," Trump began. "I don't want to have them make a big chart. Costs too much and I am a business guy. I asked how much it costs to make a big chart. Like it matters but it matters to me, does that make sense? Two maps identical. Except the one on top was Syria. See that? The one on top was Syria in November of 2016," Trump said. "This is all ISIS. On the bottom, today, the caliphate is gone as of tonight. Pretty good. That is pretty good, right?"

Mesozoic Mister Nigel

  • v=1/3πr2h
  • Deserved It
  • ****
  • Posts: 77624
  • The sky tastes like red exuberance.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #2 on: October 14, 2014, 03:04:24 am »
A bunch of valid username/passwords have been released on internets with claims they came from Dropbox and there are up to 7 million more to come.

Dropbox have just responded by force-resetting a bunch of passwords but best to get in early and reset your password yourself in case there's any downtime between release and Dropbox reset.

Also, if you use the same password in a lot of places, please don't do that and change those as well.

Great.  :kingmeh:
“I’m guessing it was January 2007, a meeting in Bethesda, we got a bag of bees and just started smashing them on the desk,” Charles Wick said. “It was very complicated.”


Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 2925
  • I ain't even mad.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #3 on: October 14, 2014, 03:17:49 am »
Looks like the passwords may have been sourced from third-party services, rather than from Dropbox itself. Still probably a good opportunity to change your password.

Passwords are annoying.

Upstream Prone Palisade

  • sea monstropode
  • Deserved It
  • ****
  • Posts: 9185
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #4 on: October 14, 2014, 04:54:14 pm »
Passwords are annoying.

Very true, until you get a password manager.

1Password was the best $35 I spent all year.
P E R   A S P E R A   A D   A S T R A

Faust

  • Tyrannical Overlord
  • Deserved It
  • *
  • Posts: 9673
  • The Greasy Strangler
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #5 on: October 14, 2014, 05:49:28 pm »
Where's the compromised list? those normally end up on pastebin, wouldn't mind checking if mine is there.

Full list isn't up, a random sample from the B's

We'll guess it's time to change the password, again.
« Last Edit: October 14, 2014, 05:53:21 pm by Faust »
Narrator: In time you will know the tragic extent of my failings

May you find your worth in the waking world.

Pæs

  • James Bond-defying Shit-Volcano Trigger Device of the Next Armageddon.
  • Deserved It
  • ****
  • Posts: 2925
  • I ain't even mad.
    • View Profile
Re: PSA: Change your Dropbox password.
« Reply #6 on: October 15, 2014, 01:47:21 am »
Full list hasn't been released.

What it looks like this was, and what Dropbox is claiming it is, is a list of passwords compromised elsewhere, then checked against Dropbox users so they could pretend they stole them from there.

They release a small sample of these user/password combos and asked for bitcoin to release the rest (which they aren't likely to have many of).

If you want to check whether your email has been included in recent password dumps, check out https://haveibeenpwned.com/