News & Events

Developers Hack Dropbox, show how to access user data

August 28, 2013

In a paper published at USENIX 2013, two developers say they've reverse-engineered Dropbox, using generic techniques to crack the site's security, including intercepting SSL data from its services and bypassing the cloud storage provider's two-factor authentication. Dropbox contends that the techniques used require that the user's computer be already compromised to such an extent that everything on it would be compromised, not just Dropbox, but the paper the potential for additional security concerns when storing private data with a cloud provider.