dropbox

(get it in RSS or Atom)

Dropbox passwords leaked, third-party services blamed

Dropbox logo

Hundreds of Dropbox logins were posted on Pastebin and Reddit, but it turns out they were stolen from a third-party service months ago, Dropbox says. So why did some of those passwords work, as Reddit users claimed? Think password reuse.

Disgruntled employees are increasingly e-sabotaging businesses, FBI says

Disgruntled employees are increasingly e-sabotaging businesses, FBI says

Employees with an axe to grind are increasingly sticking it to their current or former employers by carrying out "computer network exploitation and disruption", the FBI says.

Monday review - the hot 21 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

Is Apple finally getting real about security? 60 Sec Security [VIDEO]

2014-05-10-thumb-0250

Where does the data breach buck stop? Why do they call them "secret" links? And is Apple finally getting real about security?

Find out in "60 Second Security" for 10 May 2014

SSCC 146 - Target, Microsoft, Dropbox and the mysterious "Webdriver Torso" [PODCAST]

sscc-146-thumb-250

Have a listen to the latest episode of our weekly security podcast.

Sophos security experts Chester Wisniewski and Paul Ducklin look at what we can learn from the latest news.

Dropbox stumbles over security and privacy of secret links

shutterstock_womandroppingbox250

Another flaw in Dropbox has been discovered. Users sharing documents using a secret link may have inadvertently been sharing the secret link with sites they linked to from shared files.

Dropbox says it isn't poking around in our stuff

Dropbox says it isn't poking around in our stuff

"We don’t look at the files in your private folders and are committed to keeping your stuff safe", the company said in the wake of an internet freakout sparked by a user finding himself unable to share copyrighted content. Time to relax, or time to consider encrypting your files before they get to Dropbox (or any other cloud storage)?

"Mailbox" app on iPads and iPhones runs JavaScript from emails - vulnerability or feature?

mbox-250

Italian computer scientist Michele Spagnuolo recently wrote about what he considered a security issue in the popular iPhone and iPad email app "Mailbox."

Not everyone agreed with him...

Monday review: the hot 27 stories of last week

Monday review: the hot 26 stories of last week

It's weekly roundup time - here's everything we published in the last seven days.

Dropbox two-factor authentication available to early adopters

Dropbox two-factor authentication available to early adopters

A few weeks ago, Dropbox reported a data breach and promised two-factor authentication as part of its security response.

The good news is that the company is already starting to deliver on that promise...

Monday review: the hot 23 stories of last week

Monday review: the hot 21 stories of last week

Just in case you missed any of our stories last week, here's a little recap.

Correct​horse​battery​staple - the guys at Dropbox are funny

Correcthorsebatterystaple - the guys at Dropbox are funny

Remember that famous xkcd cartoon, suggesting passphrases like "correcthorsebatterystaple" are harder for hackers to crack than the likes of "Tr0ub4dor&3"?

Well, I'm full of admiration for whoever the web developer was at Dropbox who implemented this on their sign-up form...

Dropbox data breach proves the "One Site, One Password" rule

Dropbox data breach proves the "One Site, One Password" rule

A couple of weeks ago, Dropbox users started noticing an upturn in spam to email addresses they'd only ever used for Dropbox.

Understandably, they wanted to know, "Why?"

64% of people think cloud storage is risky, but 45% still go right ahead and use it

cloud

Sophos polled people at their InfoSec Europe booth last week to find out their views on security in the workplace. Here's what they found.

Cloud storage data risks and encryption

clouds-thumb

Are you encrypting the data you keep in the cloud? Or are you trusting the cloud storage providers to do a decent job at security?

Cloud storage's hazy security lining at SC Congress NYC

whatis_icloud250

With the bring your own device (BYOD) gaining momentum, do you know how your users are managing to move their data to and fro? In all likelihood they are using the cloud. Read on for the risks and strategies to protect your sensitive information in the cloud.

Dropbox lets anyone log in as anyone - so check your files now!

Dropbox says it isn't poking around in our stuff

Customers of cloud-based file storing-and-sharing company Dropbox should check on the data they've entrusted to the service, following the company's admission that it messed up its access controls for several hours.