With all the major services that have been hacked over recent times I did miss the notifications that dropbox had been hacked.
Just a bit of information up front. When I sign up to a service I use a fresh email address each time. So for instance when I signed up to dropbox I used something like dropbox@mydomain.com
So if I get a spam, I can look at which address it was sent to and see immediately which company has either been hacked, shared/sold my details or otherwise allowed my personal data to escape.
Anyway, back to dropbox. I just got a spam in my mailbox, looked at the To: field and it was my dropbox login email address. I did a quick search and it appears they got hacked along with a lot of other companies back in 2012. 2012 was a busy year for hackers. Anyway, I have just gone in and done a preventative password change and changed my login email address. The old email address is now invalid and my mailserver will bounce any emails sent to it.
I am posting this for those who have a dropbox account so you can reset your password as it appears that a new team has got hold of the data dump and is starting to make use of it. The hack only came to light in August 2016 4 years later. If you signed up for dropbox prior to the 2012 and haven't reset your password since it might be an idea to do this now. I am not sure but I suspect dropbox will have forced this at the time but I can't remember to be honest.
Just a bit of information up front. When I sign up to a service I use a fresh email address each time. So for instance when I signed up to dropbox I used something like dropbox@mydomain.com
So if I get a spam, I can look at which address it was sent to and see immediately which company has either been hacked, shared/sold my details or otherwise allowed my personal data to escape.
Anyway, back to dropbox. I just got a spam in my mailbox, looked at the To: field and it was my dropbox login email address. I did a quick search and it appears they got hacked along with a lot of other companies back in 2012. 2012 was a busy year for hackers. Anyway, I have just gone in and done a preventative password change and changed my login email address. The old email address is now invalid and my mailserver will bounce any emails sent to it.
I am posting this for those who have a dropbox account so you can reset your password as it appears that a new team has got hold of the data dump and is starting to make use of it. The hack only came to light in August 2016 4 years later. If you signed up for dropbox prior to the 2012 and haven't reset your password since it might be an idea to do this now. I am not sure but I suspect dropbox will have forced this at the time but I can't remember to be honest.