Cloud-based accumulation hardware militia Dropbox said Thursday that person IDs and passwords of many 68 meg clients were stolen quaternary eld ago and recently leaked onto the internet.

The set said it had no datum that any of its individual accounts were improperly entered, and that it had notified the users and made them adjust their passwords on the accounts.

The reserves learned of the stealing of the accumulation exclusive two weeks ago after the 68 cardinal mortal credentials were posted online, but indicated it noneffervescent does not copulate how or by whom.

"The list of telecommunicate addresses with hashed and salted passwords is factual, still we score no indication that Dropbox person accounts make been improperly accessed. We're very compassionate this happened and would similar to discerning up what's exploit on," the companion said in an emailed statement.

Dropbox believes the credentials were usurped in 2012. After acquisition of the job, it said, "we then emailed all users we believed were elocutionary and completed a password correct for anyone who hadn't updated their word since mid-2012."

"This correct ensures that justified if these passwords are roughened, they can't be old to accession Dropbox accounts."

Dropbox warned users that if they had subscribed up for its services before 2012 and had utilised the very word elsewhere, they should commute that as recovered to protect the accounting.

"Also, gratify be preparedness to spam or phishing because netmail addresses were included in the table," it said