News: Dropbox Authentication Bug

Yesterday Dropbox made a code update that introduced a bug affecting their authentication mechanism which allowed some users (reportedly less than 1%) to login without the correct account password. The bug was quickly discovered and a fix was issued soon afterwards.

The Dropbox team have instigated a full investigation of related activity to understand whether any accounts were improperly accessed. Account owners will be notified in case of any identified unusual activity. If you’re concerned about any activity that has occurred in your account, you can contact them directly via support@dropbox.com.

The following extract was released in the official statement:

‘This should never have happened. We are scrutinizing our controls and we will be implementing additional safeguards to prevent this from happening again.’

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s