In a previous publication we had mentioned that the company dropbox με emails προς τους χρήστες της, απαίτησε την αλλαγή κωδικών πρόσβασης, όταν ανακάλυψε μια διαρροή data from a breach that took place in 2012.
According to new information, accounts from 68 were leaked millions users.
Dropbox admitted 2012's violation when the incident occurred, but never revealed details of how it happened and how many users were affected.
According to an analysis published by LeakedSource, the data stolen in 2012 includes details from 68.680.741 users in the form of "e-mail :. Password_hash ”
Passwords have been hashed with two different algorithms. 31.865.280 passwords are encrypted with bcrypt, and the rest of 36.815.461, with SHA1.
"It looks like SHA1 hashes are not instantly crackable," says LeakedSourc. According to a LeakedSource spokesman, Dropbox uses "some unknown salt" to improve the hash complexity of passwords.
Dropbox data does not yet appear to be circulating in its markets Dark Web and we probably won't see them circulating as brute-force practices for cracking passwords probably won't work due to strong encryption.
"For the most part, the database is useless unless someone uses emails from Dropbox users to send spam," says LeakedSource.
