Software developer duo hack Dropbox

closeThis article could be out of date, as it was published 1 year 2 months 21 days ago.

Two software developers have reportedly hacked cloud-bases storage provider Dropbox, a move the company is dismissing as “ineffective.”

Bypassing its two-factor authentication, a paper published on usenix.org entitled ‘Looking inside the (Drop) box’, has claimed responsibility for the breach.

“In spite of its widespread popularity, we believe that Dropbox as a platform hasn’t
been analyzed extensively enough from a security standpoint,” wrote developers, Dhiru Kholia and Przemyslaw Wegrzyn.

“We describe a method to bypass Dropbox’s two factor authentication and hijack
Dropbox accounts.

“Additionally, generic techniques to intercept SSL data using code injection techniques and monkey patching are presented.

“We believe that our biggest contribution is to open up the Dropbox platform to further security analysis and research.”

In response to the breach, a Dropbox spokesperson told Computerworld:

“We appreciate the contributions of these researchers and everyone who helps keep Dropbox safe.

“In the case outlined here, the user’s computer would first need to have been compromised in such a way that it would leave the entire computer, not just the user’s Dropbox, open to attacks across the board.”

The website currently has over 100 million users who upload as man as a billion files per day.

Follow Us
on Google+
Sponsored

Hilton Auckland

As more and more conferences and events arrive in New Zealand, the opportunity to gain knowledge and build networks becomes better every day. Conferences can be hard work, and there’s nothing like retiring to a nice hotel room at the end of the day to relax and rest. But how do you turn a night in a hotel room into a lesson in building brand loyalty?   Read More →

Android App Review: Vimeo

NetGuide I review a lot of apps that, for one reason or another, aren’t that good. But it’s rare to find one that’s actually irredeemably broken. Video sharing website Vimeo’s app, however, is closer than it should be for an app with such obvious potential.   Read More →

Review: Samsung Gear S

NetGuide It takes something pretty special to stand out from the crowd in the smart wearable space. With new smartwatches and bands launching on a weekly basis, there’s lots of noise and plenty of confusion.   Read More →