A post that appeared in Reddit contains links to hundreds of user names and account passwords dropbox in plain text.
The post contains four Pastebin files containing a few hundred usernames and passwords in plain text pairs. The anonymous user who uploaded the files says it is part of a large leak and asked for donations to Bitcoin to continue them publications.
His message states:
Here is another batch of Dröpbox Hacked Accounts from a Total 7.000.000 Account Hack
To see more accounts, just look for Dropbox hack.More come, as long as you show your support
Reddit users have reportedly confirmed that online credentials are real, but it is not clear where they come from.
Dropbox, however, in a statement to The Next Web, says that the passwords και ονόματα χρηστών που they leaked have been stolen from other third-party services:
Dropbox has not been hacked. These usernames and passwords have unfortunately been stolen by other services that have been used to log into Dropbox accounts. We had detected these attacks (months now) and the vast majority of posted passwords have been expired for some time now. All other passwords have expired, too.
Dropbox, as an additional measure of prevention, forces existing users registered in Pastebin files to reset their passwords according to Reddit users.
However, if you use the service, change your password immediately.