Software developer duo hack Dropbox

closeThis article could be out of date, as it was published 1 year 13 days ago.

Two software developers have reportedly hacked cloud-bases storage provider Dropbox, a move the company is dismissing as “ineffective.”

Bypassing its two-factor authentication, a paper published on usenix.org entitled ‘Looking inside the (Drop) box’, has claimed responsibility for the breach.

“In spite of its widespread popularity, we believe that Dropbox as a platform hasn’t
been analyzed extensively enough from a security standpoint,” wrote developers, Dhiru Kholia and Przemyslaw Wegrzyn.

“We describe a method to bypass Dropbox’s two factor authentication and hijack
Dropbox accounts.

“Additionally, generic techniques to intercept SSL data using code injection techniques and monkey patching are presented.

“We believe that our biggest contribution is to open up the Dropbox platform to further security analysis and research.”

In response to the breach, a Dropbox spokesperson told Computerworld:

“We appreciate the contributions of these researchers and everyone who helps keep Dropbox safe.

“In the case outlined here, the user’s computer would first need to have been compromised in such a way that it would leave the entire computer, not just the user’s Dropbox, open to attacks across the board.”

The website currently has over 100 million users who upload as man as a billion files per day.

Follow Us
on Google+
Sponsored

Review: Huawei Ascend P7

NetGuide Chances are that you’ve heard of Huawei, they make a lot of budget smartphones. What many don’t know is that Huawei also make some pretty tasty flagship devices. I spent some time with their latest, the Ascend P7 and came away moderately impressed.   Read More →

Android App Review: St John NZ

NetGuide Apparently more than nine people go into cardiac arrest every day in New Zealand, and their chances of survival are not high. If it happened to someone near you would you know what to do to help them? Me neither, but the St John NZ app increases their chances by explaining how to do CPR in a way anyone can follow.   Read More →