Hackers claim to have stolen more than 7 million account usernames and passwords from Dropbox servers. Dropbox denies these claims, saying that the information was taken from services unrelated to Dropbox. While we can all breath a sigh of relief knowing the Dropbox wasn’t actually hacked, here are a few comments Abine has on the matter…
First of all, Dropbox has many times over indicated they prefer ease of use over privacy and security. Because of its stance on encryption (now weaker than Apple’s defaults announced in iOS8), it’s simply not the safest place to store raw files. (note: Abine loves the ease of use of the service and uses it to store and sync already-encrypted information)
Secondly, hackers “testing” whether you re-use your email and password combinations on sites that might have treasure-troves of data (naked pics?) or financial information is becoming increasingly common. Why wouldn’t they? 90% of people still re-use their passwords at most sites. And 99% of people re-use the same personal email address as well. This makes it a cakewalk for hackers to test out where the weakest links with the highest value data lies.
What to do: Dropbox is recommending you change your password. Well, band-aids are band-aids. Abine recommends you try our masking services which make you new passwords AND email addresses for sites you use (which really stops hackers from even being able to test hacking you across sites). Better yet? We make it as easy and fast to login to any account as it is to put a file on Dropbox (which you should try to encrypt first!).