By: AndrzejL
Still… IF they are making security bugs like this – no wonder their DB is flying around… Just my 2 cents. Regards Andrzej Like or Dislike: 0 0
View ArticleBy: AndrzejL
I am sorry but I do not understand. Did You meant the quote? If so – it’s Steve Gibson You would have to ask . Regards. Andrzej Like or Dislike: 1 0
View ArticleBy: voksalna
Cookies aren’t terrific but you’d be surprised at how many places use them for authentication (ie “remember this computer” sorts of things), which is why I’m confused. It’s not a bug if they meant to...
View ArticleBy: leoluk
The Dropbox security problem was not related to cookies at all. Every computer logging in to a Dropbox account got an access token which didn’t expire when changing passwords. This meant that if...
View ArticleBy: Philip Spohn
I think the root cause is right there in plain sight. When you right-click a Dropbox sub-folder in Windows Explorer you get an option to “Share this folder…”. The invitation that Dropbox then sends...
View ArticleBy: Philip Spohn
I see the comment system removed my (made-up) email address that should appear after {sender}. It’s right there in plain sight in the original email message from Dropbox. Like or Dislike: 0 0
View ArticleBy: leoluk
Dropbox isn’t even installed on my computer and I didn’t invite anyone, and I still got that spam mail, so I don’t think it’s the root cause. Like or Dislike: 1 0
View ArticleBy: AndrzejL
Oh that is what voksalna was asking about. Yeah it was not cookies related. Just a security “feature” . Regards. Andrzej Like or Dislike: 0 1
View ArticleBy: Sastray
@leoluck I think the point is not that you need dropbox on your computer or to invite anyone, but rather - to gather a list of dropbox users, a compromised computer could look for those invitations...
View Article
More Pages to Explore .....