A couple weeks ago, a few hundred Dropbox users noticed they were receiving loads of spam about online casinos and gambling websites, at email addresses those users had set up only for Dropbox-related actions. The online file storage service now admits that hackers snagged usernames and passwords from third party sites, and used this data to break into those Dropbox users' accounts. Dara Kerr, reporting for CNET:
"Our investigation found that usernames and passwords recently stolen from other websites were used to sign in to a small number of Dropbox accounts. We've contacted these users and have helped them protect their accounts," the company wrote in a blog post today. "A stolen password was also used to access an employee Dropbox account containing a project document with user email addresses. We believe this improper access is what led to the spam."
Over at Ars Technica, Jon Brodkin has more. Evidently, the illicit access happened because a Dropbox employee’s account was hacked.
Dropbox noted that users should set up different passwords for different sites. The site is also increasing its own security measures. In a few weeks, Dropbox said it will start offering an optional two-factor authentication service. This could involve users logging in with a password as well as a temporary code sent to their phones.
Good to hear. Google is another popular service that offers such two-step authentication for its services, and I'm a big fan of that. And, of course, it's always smart not to use, say, the same easily-cracked password for Dropbox that you do for your onling banking.
Nissan, to show off its autonomous parking tech, outfitted an inn in Hakone, Japan with “self-parking slippers,” autonomous floor cushions that tidy themselves, and a TV remote control that straightens itself on the coffee table. While obviously a marketing gimmick, self-knolling anything is quite appealing to me. ProPILOT Park Ryokan (Nissan)
Boing Boing pal Eric Paulos, an engineering professor and artist at UC Berkeley, has a history of high-tech provocations, from his early work with machine performance group Survival Research Laboratories to his controversial art installations such as a vending machine for pathogens. Above is the performance/prank Eric recently staged to open his Critical Making class: […]
With Vaunt, Intel is taking steps toward solving the Glasshole paradox: how to get consumers to wear wearables that don’t make wearers seem like bad clichés of wearable users.
Trains may not be the most popular means of conveyance nowadays, but chances are you grew up playing with toy trains or building a model set to wrap around the Christmas tree. In either case, it’s safe to say that locomotives have long carried a unique sense of awe and scale, especially when they’re hundreds […]
When it comes to redesigning or renovating a living space, envisioning changes before they occur can be tricky for most. Thankfully, the web is home to tools that can remove some of the guesswork, like Live Home 3D Pro for Mac. This app lets you create detailed and furnished floor plans for everything from sheds and […]
For many startups and fledgling businesses, web hosting — and the fees associated with it — can take a sizeable chunk out of the company budget and limit growth down the road. But, that’s not to say there aren’t hosts out there who can get your site online while staying within your budget. Arch Hosting is a […]