This Week Health
SOAR 2024 Bluebird Leaders This Week HealthAlex's Lemonade Stand This Week Health
<- Back to Insights
May 2, 2024

2024-05-01 DROPBOX, INC. Cybersecurity Incident

board-cybersecurity.com
|
Contributed by: Drex DeFord
Summary
Dropbox, Inc. disclosed a cybersecurity incident affecting the Dropbox Sign (formerly HelloSign) production environment through an SEC 8-K filing on May 1, 2024. This unauthorized access was first detected on April 24, 2024, and involved a threat actor accessing Dropbox Sign user information, including emails, usernames, phone numbers, hashed passwords, and certain authentication details such as API keys, OAuth tokens, and multi-factor authentication. The incident, believed to be limited to Dropbox Sign infrastructure without impacting other Dropbox products, prompted immediate security responses including password resets, user notifications, and coordination with law enforcement and regulatory authorities. Remediation efforts are underway, and while there has been no evidence of access to the contents of users' accounts or payment information, Dropbox acknowledges the breach has violated their standard of trust and is conducting a comprehensive review to prevent future incidents.

Explore Related Topics

Subscribe Now to Receive Seven Top Stories Daily to Your Inbox

Subscribe News
Healthcare Transformation, Powered by Community

© Copyright 2024 Health Lyrics All rights reserved