Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Odd Email from Dropbox.

Traverse

Traverse

macrumors 604
Original poster
Mar 11, 2013
7,720
4,505
Here
I used to use Dropbox all the time, but with my Office 365 subscription I moved to to OneDrive about 4 months ago and haven't used Dropbox since. I just got an email from "no-reply@dropboxmail.com" telling me my dropbox was lonely and reminding me what it can do.

All other emails I have ever received from Dropbox came from "no-reply@dropbox.com". Do they really monitor account activity that closely? This email seemed strange to me.
 
Jessica Lares said:
Seems that a lot of Dropbox phishing scams originate from that particular address.
Click to expand...

So there are other reports of the @dropboxmail.com?

Before I posted I did a very quick google search but didn't look thoroughly because I was working.
 
Traverse said:
Thank you. That confirms my suspicion. What bothers me is how they got my email. It's my personal one that never goes out to anyone. Aw well. Thanks again.
Click to expand...

Probably a mass-mailing where, by sending millions of emails, they hope to hook one or two legit victims.
 
Traverse said:
I used to use Dropbox all the time, but with my Office 365 subscription I moved to to OneDrive about 4 months ago and haven't used Dropbox since. I just got an email from "no-reply@dropboxmail.com" telling me my dropbox was lonely and reminding me what it can do.

All other emails I have ever received from Dropbox came from "no-reply@dropbox.com". Do they really monitor account activity that closely? This email seemed strange to me.
Click to expand...

Phising attempt, this occurs from time to time. I never click on a link in an email, regardless of the sender. I go to their main site and log in.

Likewise, when I get called by a credit company stating there's an issue with my credit card, I hang up, and call the number on the back of my card.

You can be too cautious in this day and age.
 
maflynn said:
Phising attempt, this occurs from time to time. I never click on a link in an email, regardless of the sender. I go to their main site and log in.

Likewise, when I get called by a credit company stating there's an issue with my credit card, I hang up, and call the number on the back of my card.

You can be too cautious in this day and age.
Click to expand...

Good advice. I do the same thing. There is a Dropbox download link in the email, but I'd never use that. I would just go to Dropbox.com
 
dropboxmail.com is a verified Dropbox domain.

Considering the contents of the message, and the fact that dropboxmail.com is owned by Dropbox, Inc. I don't think I'd rush to say that this was a phishing attempt. Unless you check the mail headers and find something fishy, I'd say the email was legit.

It's quite reasonable that their system would note a lack of activity on an account and send out a marketing email to try to bring you back in.
 
Darth.Titan said:
dropboxmail.com is a verified Dropbox domain.

Considering the contents of the message, and the fact that dropboxmail.com is owned by Dropbox, Inc. I don't think I'd rush to say that this was a phishing attempt. Unless you check the mail headers and find something fishy, I'd say the email was legit.

It's quite reasonable that their system would note a lack of activity on an account and send out a marketing email to try to bring you back in.
Click to expand...

Do you know how insanely easy it is to modify the from address? Email addresses should never be used as an indicator of whether or not an email is legit. Even looking at headers can be difficult since many companies rely on third party email systems these days (sendgrid, AWS, etc)
 
jeremysteele said:
Do you know how insanely easy it is to modify the from address? Email addresses should never be used as an indicator of whether or not an email is legit. Even looking at headers can be difficult since many companies rely on third party email systems these days (sendgrid, AWS, etc)
Click to expand...

Calm down, I said to check the message headers because I'm quite aware how easy it is to spoof the from address in an email. It's usually also quite easy to determine by the message headers whether an email address is on the level, even if companies use "third party email systems".

My point was the message content in no way implies that it was a phishing mail. I've received similar messages from Dropbox in the past, and you'll note that the OP's report of the message content said nothing of the usual "Click here to login" that a phishing mail would have.

Like I said before, it looks to me like Dropbox noticed a lack of activity in the OP's account so they sent a standard marketing message to the email address on file. I just don't see anything hinky here.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back