- How to stream Barcelona vs. Borussia Dortmund in Champions League action 3 Years Ago
- How to stream Liverpool vs. Napoli in Champions League action 3 Years Ago
- How to make real money with Amazon’s Mechanical Turk Today 5:03 PM
- How to stream Chelsea vs. Valencia in the Champions League group stage Today 4:47 PM
- ‘SNL’ fires Shane Gillis for racist, homophobic comments Today 4:41 PM
- Ben Shapiro wants accusers to describe Brett Kavanaugh’s penis Today 4:30 PM
- Twitch suspends streamer for wearing Chun-Li cosplay Today 4:11 PM
- Report: 8 years of Trump tax returns subpoenaed by prosecutors Today 3:45 PM
- Netflix lands exclusive streaming rights to ‘Seinfeld’ Today 3:34 PM
- Jenny Slate sets first comedy special at Netflix Today 3:05 PM
- #EndSmearFear is aiming to save lives Today 2:54 PM
- Netflix ‘Living With Yourself’ trailer offers a double dose of Paul Rudd Today 2:07 PM
- How to stream the 2019-20 UEFA Champions League Today 2:04 PM
- Caitlyn Jenner ridiculed with transphobic jokes during Alec Baldwin roast Today 1:27 PM
- Brad Pitt confronts his daddy issues in the sci-fi epic ‘Ad Astra’ Today 1:20 PM
More than 68 million Dropbox account logins have leaked online, but don’t panic just yet.
The email address and password leak, first reported by Motherboard, is due to a targeted attack against users of the cloud storage in 2012. The attack was possible due to users employing the same passwords across multiple websites, some of which were breached, the company said. Dropbox disclosed the breach soon after the attack.
On Friday, Dropbox announced that it was issuing a forced reset of passwords for all users who created their accounts before the middle of 2012 and have not changed their passwords since. The company did not disclose the number of affected accounts.
Dropbox said all passwords were hashed and salted, meaning Dropbox’s system added additional characters to the end of every password it stored so that even if hackers stole the passwords they would be protected.
Dropbox says it does not believe any of the affect accounts have successfully been compromised as a result of the login leak.
Still, the leak serves as yet another reminder of the fragility of passwords as a security tool. A 2015 survey conducted by password manager company Password Boss found that 59 percent of internet users reuse passwords across multiple sites and services, greatly increasing the risks to their data.
To better protect your online data, create a secure password for every site or online service you use, especially those that contain personal information or files. Use a password manager to create strong passwords that cannot easily be cracked. And enable two-factor authentication—which will require anyone who tries to access your account from a device other than your own to enter an additional authentication code sent to you—on any service that offers it. (Dropbox does, as do Facebook, Gmail, and Twitter.)
To find out whether your accounts have already been compromised, enter your email address(es) into the search tool on Leaked Source, which collects leaked databases in an effort to inform users about the security of their accounts.
Contact the author: Andrew Couts, [email protected]
Andrew Couts is the former editor of Layer 8, a section dedicated to the intersection of the Internet and the state—and the gaps in between. Prior to the Daily Dot, Couts served as features editor and features writer for Digital Trends, associate editor of TheWeek.com, and associate editor at Maxim magazine. When he’s not working, Couts can be found hiking with his German shepherds or blasting around on motorcycles.