The cloud storage provider Dropbox has prompted users who have signed up for the service before 2012 to change their passwords as a precautionary measure. This follows security breaches to other web services and password leaks.
Dropbox says that its just a precaution
Dropbox has requested some of their clients to update their passwords as a precautionary measure. The users who have registered for the cloud storage service before 2012 have received email prompts from Dropbox.
The explanation cited is that their security team has discovered old sets of user credentials that contain email addresses and hashed and salted passwords. The staff members believe that they were obtained in 2012 and could be linked to a cyber intrusion that the company reported. During the investigation, the team uncovered that part of the leaked passwords were used to sign in a limited number of accounts. Dropbox staff contacted the affected users to help protect their cloud storage information and accounts from malicious users.
Now Dropbox is asking a large portion of users to change their passwords as a precaution. This time, no leaks or intrusions are reported. And if you don’t receive an email from them, then you probably don’t need to worry. Concerned users have posted copies of the sent emails on Twitter. So far there are no reported threats that target Dropbox or their users.
The cloud storage provider also suggests all customers to employ two-factor authentication when performing password resets for added security.