Dropbox-hack uit 2012: ook passwords gestolen
Ook jouw Dropbox-account?
Volgens Dropbox zijn alle gebruikers die hun password na de hack niet meer hebben veranderd op de hoogte gesteld. Om toch te kijken of jouw gegevens bij de hack betrokken zijn, kun je gebruik maken van haveibeenpwned.com.
Security en Dropbox
Naast het regelmatig vernieuwen van je password is het ook sterk aan te raden twee-staps-verificatie voor jouw Dropbox-account te activeren. Om te kijken hoe je dat doet ga je hierheen.
(update 1-9-2016)
Naar aanleiding van onze berichtgeving ontvingen we onderstaand statement van Patrick Heim, Head of Trust and Security bij Dropbox:
'This is not a new security incident, and there is no indication that Dropbox user accounts have been improperly accessed. Our analysis confirms that the credentials are user email addresses with hashed and salted passwords that were obtained prior to mid-2012. We can confirm that the scope of the password reset we completed last week did protect all impacted users. Even if these passwords are cracked, the password reset means they can’t be used to access Dropbox accounts. The reset only affects users who signed up for Dropbox prior to mid-2012 and hadn’t changed their password since.
While Dropbox accounts are protected, affected users who may have reused their password on other sites should take steps to protect themselves on those sites. The best way to do this is byupdating these passwords, making them strong and unique, and enabling two-step verification. Individuals who received a notification from Dropbox should also be alert to spam or phishing.'
Lees meer
