password optional | Windows Central

OG Xbox!

All the backward compatible original Xbox games confirmed for Xbox One

Is this the end ... ?

What if there really are no more new Windows Mobile devices?

FCU FTW

Windows 10 Fall Creators Update's top 5 features

i5 or i7?

Comparing performance and battery in the Surface Laptop Core i5 and Core i7

Don't be an easy target

7 tips to protect your Windows PC against malware

¯\_(ツ)_/¯

What do you think of Skype's new Snapchat-esque makeover? (poll)

1080P vs 4K

How important is 4K gaming on the Xbox One X to you?

Surface > Mac

Microsoft's latest device lineup truly (and finally) rivals Apple's

New pen is mightier than the old pen

Own an older Surface? Here's what you should know about the new Surface Pen

Driving back in time

Wondering why ALL Microsoft's Windows drivers are dated June 21?

A good port

Spotify shows the world how to do Centennial apps the right way

♏ vs. 🅿

Here's how the Xbox One X stacks up to Xbox One S and PS4 Pro

Cream o' the crop

Before buying a Microsoft laptop, check out our pick for the absolute best

(╯°□°)╯︵ ┻━┻

Share your experiences with Microsoft tech support for Windows 10 Mobile

What's the difference?

What to expect from ‘Xbox One X Enhanced’ games

Best o' E3

Ashen for Xbox One was the best game we saw at E3 — here's why

AR hearts and minds

Will Apple beat Microsoft to the AR punch?

ThinkPad Mini

The updated ThinkPad X1 Tablet has a few unfortunate flaws

To be continued

Windows 10 Fall Creators Update: Everything we know so far

all in on alcantara?

Are you a fan of the Alcantara on Microsoft Surfaces and Type Covers?

< >

SHOP: Surface Laptop | Surface Pro (2017)

password optional

The other day we mentioned an openly available tool, Dropbox Reader, that is designed to circumvent security measures on your DropBox account. We are now hearing that over the weekend, no tool was needed to access DropBox accounts.

For a brief period of time, users could log into accounts using any password. Just type in an email address and wing it with a password and you were in. DropBox has confirmed this breach and states it left everything vulnerable from 1:54pm PDT to 5:46pm PDT this past Sunday (06/19/2011). The fix only took five minutes to put into place once DropBox became aware of things.

In a statement on DropBox's blog, the cloud storage service reports,

"We’re conducting a thorough investigation of related activity to understand whether any accounts were improperly accessed. If we identify any specific instances of unusual activity, we’ll immediately notify the account owner. If you’re concerned about any activity that has occurred in your account, you can contact us atsecurity@dropbox.com.

This should never have happened. We are scrutinizing our controls and we will be implementing additional safeguards to prevent this from happening again."

If you're a DropBox client, you may want to check your account to see if any files were accessed during the time frame or have gone missing. Changing your password might not be a bad idea either.

Glitches in security happen but it sure does seem like DropBox has been snake bitten here lately. 

source: TechCrunch via: Gizmodo

More →