Feeds

Dropbox brings in crack team to probe spam leakage

Email accounts crammed with gambling site grossness

Build a business case: developing custom apps

Dropbox has begun investigating complaints that users are receiving spam to email addresses only associated with their accounts at the file-sharing service.

The spam, sent to addresses only used for Dropbox accounts, advertises a particular gambling website, according to users on Dropbox's forum. The behaviour has sparked concerns that Dropbox's database has been harvested or otherwise compromised, although this remains unconfirmed. One other possible explanation is that a third-party app which integrates with Dropbox is to blame for the leak.

Spambots striking it lucky and randomly hitting a run of unique and private email address associated with Dropbox seems improbable, especially given the volume of users who are complaining about "Dropbox spam" on Twitter and elsewhere. Complaints on Dropbox's own forums suggest the problem is limited to European users of the file-synching service.

In response to these concerns, a Dropbox staffer said it had called in external security experts to help with an investigation into the spam run.

We wanted to update everyone about spam being sent to email addresses associated with some Dropbox accounts. We continue to investigate and our security team is working hard on this. We’ve also brought in a team of outside experts to make sure we leave no stone unturned.

While we haven’t had any reports of unauthorized activity on Dropbox accounts, we’ve taken a number of precautionary steps and continue to work around the clock to make sure your information is safe. We’ll continue to provide updates.

The Dropbox staffer added that a 30-minute outage on Dropbox's site early on Tuesday afternoon was "not caused by any external factor or third party" and apparently was not linked to the current junk mail unpleasantness. ®

Build a business case: developing custom apps

More from The Register

next story
Sysadmin Day 2014: Quick, there's still time to get the beers in
He walked over the broken glass, killed the thugs... and er... reconnected the cables*
Auntie remains MYSTIFIED by that weekend BBC iPlayer and website outage
Still doing 'forensics' on the caching layer – Beeb digi wonk
Microsoft says 'weird things' can happen during Windows Server 2003 migrations
Fix coming for bug that makes Kerberos croak when you run two domain controllers
Cisco says network virtualisation won't pay off everywhere
Another sign of strain in the Borg/VMware relationship?
VVOL update: Are any vendors NOT leaping into bed with VMware?
It's not yet been released but everyone thinks it's the dog's danglies
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.