sb-nz logo
Story image

Dropbox's massive 68 million password breach prompts warning about account security

08 Sep 2016

Dropbox customers, change your passwords now - especially if you joined in 2012. Last week the company sent out an urgent announcement that a massive 68 million passwords have been hashed and salted, although there has been no evidence that they've actually been used.

It took the company four years to discover the breach, which occurred mid-2012. The company has prompted users to change their passwords next time they log on, and even those who haven't been affected should change their passwords anyway.

Dropbox says that its security teams are constantly monitoring security threats, and this monitoring alerted them to the 2012 breach.

Symantec said in its blog that users should see it as insurance - users need protection in place just in case something happens.

Symantec recommends that users take the following steps:

  • Don't use the same password across different websites, as any passwords affected by breaches can be used by cybercriminals across other websites. Use different passwords unique to each website.
  • Use two-step verification, such as a password and phone verification. This further protects you if you use weak or vulnerable passwords.
  • Consider using password managers to keep track of your unique passwords
  • If you believe you have been affected, the website https://haveibeenpwned.com/ will give you an idea if your username or email has been breached.
Story image
ESET launches the latest version of its Mobile Security solution
“With this latest version of ESET Mobile Security, we want to ensure our users feel completely secure when performing financial transactions on their devices, in addition to being protected from malware and phishing attempts."More
Story image
Security training and tech: Empowering staff in a hybrid work environment
As employees travel back and forth between home and the workplace, are they walking through the door with cyber threats sitting on their devices?More
Story image
NortonLifeLock introduces dark web monitoring to its security suite
Dark Web Monitoring Powered by LifeLock will be capable of monitoring the dark web, searching for over 120 personal identifiable information including email, physical address, phone number, driver licence number, credit card or bank account numbers and gamer tags.More
Story image
Emotet malware is on a rampage after months of silence
CERT agencies around the world are reporting a surge in cyber attacks related to the Emotet malware, which is being distributed by email.More
Story image
Global attack volume down, but fraud and cyber threats still going strong
“The move to digital, for both businesses and consumers, has been significant. Yet with this change comes opportunity for exploitation. Fraudsters look for easy targets: whether government support packages, new lines of credit or media companies with fewer barriers to entry."More
Story image
Gartner: By 2023, 65% of the world will have personal data covered under modern privacy regulations
“Security and risk management (SRM) leaders need to help their organisation adapt their personal data handling practices without exposing the business to loss."More