Dropbox cloud was a haven for data thieves, researchers say

Files entrusted to cloud-storage provider Dropbox were susceptible to unauthorized access via three attacks devised by security researchers, but the provider has since closed the vulnerabilities.

Dropbox could also be used as a place to store documents clandestinely and retrieve them from any Dropbox account controlled by an attacker.

Researchers who presented their work at Usenix Security Symposium say they had developed the exploits last year but gave Dropbox time to fix the problems before making the exploits public. Read more...