Dropbox Requiring Users to Change Old Passwords Dating Back to Mid-2012

Discussion in 'Mac Blog Discussion' started by MacRumors, Aug 26, 2016.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    [​IMG]
    Dropbox yesterday emailed users who have not changed their passwords since mid-2012 to inform them they will be prompted to do so the next time they log in.

    The cloud storage firm called the action a "preventative measure" and said that there was no indication user accounts had been improperly accessed. Users who held passwords created after mid-2012 were not affected, said the company.

    In a blog post explaining what prompted the step, Dropbox said it had learned about an old set of user credentials (email addresses plus hashed and salted passwords) that were stolen in an incident the company reported in 2012.
    The incident is likely related to the huge LinkedIn hack which saw 117 million account credentials posted online. It's thought that hackers tried the login details on other websites under the assumption that some people use the same passwords across different online services.

    Dropbox has taken the opportunity to urge its users to consider enabling two-factor authentication when signing in, and has warned about the risk of re-using the same password across multiple sites.

    Article Link: Dropbox Requiring Users to Change Old Passwords Dating Back to Mid-2012
     
  2. SandboxGeneral Moderator emeritus

    SandboxGeneral

    Joined:
    Sep 8, 2010
    Location:
    Detroit
    #2
    Always a good idea to change your password even if you're not included in this group and I think I'll do so too.
     
  3. thisisnotmyname macrumors 68000

    thisisnotmyname

    Joined:
    Oct 22, 2014
    Location:
    known but velocity indeterminate
    #3
    And use a password management app so that you are not tempted to reuse a standard password across multiple sites. Generate unique strong passwords for every account and segment to prevent further fallout if any one account is compromised.
     
  4. ThaRuler macrumors regular

    ThaRuler

    Joined:
    Feb 16, 2016
    #4
    Interesting rumor on this Apple related article.
     
  5. SandboxGeneral Moderator emeritus

    SandboxGeneral

    Joined:
    Sep 8, 2010
    Location:
    Detroit
    #5
    Indeed. I've been using LastPass for years and am very happy with it.
     
  6. Michaelgtrusa macrumors 604

    Joined:
    Oct 13, 2008
  7. Michael Scrip macrumors 603

    Joined:
    Mar 4, 2011
    Location:
    NC
    #7
    It's more of a "heads up" announcement since many Apple users also use Dropbox on their Macs and iPhones.

    :)
     
  8. Kajje macrumors 6502a

    Kajje

    Joined:
    Dec 6, 2012
    Location:
    Asia
    #8
    Well, the ones that need more than 5GB of data do. After all, 640kb (*) should be enough for everybody.

    (* x 8192)
     
  9. Michael Scrip macrumors 603

    Joined:
    Mar 4, 2011
    Location:
    NC
    #9
    I'm not sure I follow.

    Lots of people benefit from Dropbox. I use it do keep files accessible on my desktop computer, laptop and iPhone... and to share files with other people.
     
  10. SandboxGeneral Moderator emeritus

    SandboxGeneral

    Joined:
    Sep 8, 2010
    Location:
    Detroit
    #10
    That was a joke about when, allegedly, Bill Gates said in 1981 that no one should ever need more than 640kb of RAM.
     
  11. Eidorian macrumors Penryn

    Eidorian

    Joined:
    Mar 23, 2005
    Location:
    Indianapolis
    #11
    1Password here. It feels like a good time to change my DropBox password to something stronger...
     
  12. Michael Scrip macrumors 603

    Joined:
    Mar 4, 2011
    Location:
    NC
    #12
    Oh I know the joke... I just didn't know how it related to Dropbox, password changing, and such.
     
  13. maflynn Moderator

    maflynn

    Staff Member

    Joined:
    May 3, 2009
    Location:
    Boston
    #13
    Indeed, since its related to a Mac App they provide, its something that is very related.

    As to the news, changing one's password is always a good idea. It can be a pain to manage them, especially if you don't use an app like 1Password.
     
  14. WBRacing macrumors 65816

    WBRacing

    Joined:
    Nov 19, 2012
    Location:
    UK
    #14
    Just stopped using dropbox as the IOS app is hopeless and has been for some time. One day my photos for uploading are up to date, the next it is trying to clear 13,000+. I let it do that so they are all cleared and then a few days later another 5,000 pop up from nowhere. I deleted the app and reinstalled and since then it makes the phone roasty warm if left running whilst apparently searching for images to upload. Reading up on the internet it sounds like Dropbox use a lesser AWS service in order to save money.

    Started using Mega instead, hoping it will be better.
     
  15. Amazing Iceman macrumors 68040

    Amazing Iceman

    Joined:
    Nov 8, 2008
    Location:
    Florida, U.S.A.
    #15
    I also remember that, just that it was 640KB instead of 640kb. :D

    Once TSR (Terminate and Stay Resident) apps started to appear, 640KB RAM started to become not enough.
    Then, the Windows Runtime appeared, and the need for more RAM became even more evident.
     
  16. Shirasaki macrumors G3

    Shirasaki

    Joined:
    May 16, 2015
    #16
    Well. My Dropbox password is actually a weak password. Just happen to be safe so far. Perhaps I need to change it for better security.
    PS: weak=use the name of someone.
     
  17. Raineer macrumors member

    Joined:
    Apr 26, 2008
    #17
    I got the email, but I've changed my password within the last few months. Logged in to the site and wasn't prompted to change (will anyway...)

    I know it reads like "they sent the email only to folks who haven't changed since 2012", but I'm not so sure.
     
  18. Kajje macrumors 6502a

    Kajje

    Joined:
    Dec 6, 2012
    Location:
    Asia
    #18
    I rephrase...
    - Interesting rumor on this Apple related article.
    - It's more of a "heads up" announcement since many Apple users also use Dropbox on their Macs and iPhones.
    - Yes many Apple users also use Dropbox, definitely the ones that need more than the 5GB of iCloud storage.
     
  19. Michael Scrip macrumors 603

    Joined:
    Mar 4, 2011
    Location:
    NC
    #19
    Gotcha. It was your reference to 5GB that threw me. I didn't know what you meant.

    So do people really use Dropbox as a replacement for iCloud? That never crossed my mind... which is why I was confused by your statement.

    Remember you only get 2GB of Dropbox for free.

    That's why I didn't relate Dropbox to iCloud. I didn't think they were substitutes for each other.


    But anyway.... your original comment seemed like you were confused why this article appeared on MacRumors. So I was just attempting to explain why.

    We're all good now. :)
     
  20. mattwolfmatt macrumors 65816

    mattwolfmatt

    Joined:
    Jun 7, 2008
    #20
    Actually, they emailed all users, whether or not their password is very old. In the message, users were told that, if their password hasn't been changed since 2012, they need to change it.

    I received the email, yet have logged into dropbox successfully today with my recently-changed password.
     
  21. UbuntuFu macrumors regular

    Joined:
    Aug 16, 2007
    #21
    My Dropbox password was set in 2013 so I'm good.
     
  22. Floris macrumors 68020

    Floris

    Joined:
    Sep 7, 2007
    Location:
    Netherlands
    #22
    Quite strange indeed. All those 'hacks' and leaks these days are from 2012. It was a good hack year I guess.

    What's even stranger, I update my passwords at least once a year. I blog about this yearly as well. And I try to do it every season. Especially services, products, sites, etc that I find important to me. Such as Dropbox. Not sure why I got the email though. If it was meant for those who haven't changed their pass for 5+ years.
     
  23. fhall1 macrumors 68040

    fhall1

    Joined:
    Dec 18, 2007
    Location:
    (Central) NY State of mind
    #23
    I never got the email but tried to sync an app with my Dropbox and it wouldn't let me until I went through the password reset process
     
  24. janitor3 macrumors regular

    Joined:
    Aug 11, 2010
    Location:
    Glasgow, Scotland
    #24
    Got the email this morning and changed password.
     
  25. /dev/toaster macrumors 68020

    /dev/toaster

    Joined:
    Feb 23, 2006
    Location:
    San Francisco, CA
    #25
    1password is hella better than lastpass any day. I was forced to use lastpass at a job and it was an awful experience. Never again.
     

Share This Page

25 August 26, 2016