Although news reports earlier this week indicated that millions of Dropbox passwords had been dumped online, the file hosting company is denying those claims in a recent blog post.
Dropbox wrote that the stolen usernames and passwords were unassociated with its services, but attackers did try to use the credentials to access Dropbox accounts. The company said it has “measures in place to detect suspicious login activity,” and that it automatically resets passwords.
The anonymous hackers claimed to have more than seven million credentials and said plan to release them as they receive Bitcoin donations, according to CNN Money.
The first batch of credentials was dumped on a Pastebin.com post on Monday, and additional posts appeared the same day, as well as on Tuesday.