Why Dropbox’s data breach response is still wrong

One day Dropbox may well get its head around the best-practice methods for handling customer data breaches, but today is not that day.

News broke on Tuesday that details of 68,680,741 user accounts had been found online, apparently the result of a data breach back in 2012. The files reportedly contained the users’ email addresses, plus their salted and hashed passwords.

Dropbox’s response was to email the affected users, who could be forgiven for not realising it was about a data breach.