On Monday, a group of hackers claimed to have stolen the login information for almost 7 million Dropbox users, threatening to release the password details unless they’re paid a ransom. Dropbox claims that it was not hacked and that the passwords were actually stolen from third-party services and used to try to gain access to accounts on its online file storage site.
Dropbox has already reported forced a password reset for the affected accounts, according to The Next Web.
But just to be on the safe side, you may want to change your password at this point. And here’s how:
- Log into your account at Dropbox.
- Click the link for your name in the upper right corner and click the link for Settings.
- At the Settings screen, click the tab for Security.
- In the Security section, click the link to Change password.
- In the Change password window, type your current (old) password and then type your new password. Click the Change password button. Dropbox then flashes the following message at the top of the screen: “Password changed successfully.” And that’s pretty much it.
What if you’ve forgotten your password?
- Click the Forgot password link instead.
- At the window to Reset your Dropbox password, confirm your email address and click the Submit button. Dropbox will sent you an email with a link to reset your password. Click that link.
- The Dropbox site opens and display a Forgot your password page. Type your new password in the first field and then again in the second field. Click Submit. Dropbox tells you that your new password has been saved.
If you really want to be on the safe side, you can enable two-step verification.
This process requires you to enter your password and a security code sent to your mobile phone each time you wish to log into Dropbox.
- To enable two-step verification, return to the Settings page as described above and click the Security tab. Under Two-step verification, click the Enable link.
- In the Enable two-step verification window, click the Get started button. Enter your password and click Next.
- At the next screen, Dropbox gives you a choice of using text messages or a mobile app to generate the security codes. Let’s go with the text message option, so leave that one selected. Click Next.
- Enter your mobile phone number and click Next.
- Dropbox sends a security code to your mobile phone. Check your phone and enter that code into the appropriate field on the Dropbox page. Click Next.
- At the next screen, you can enter a backup mobile phone number if you wish. Click Next.
- And at the next screen, Dropbox displays an emergency backup code that you should write down in case you need to disable two-step verification to access your account. Click the button to Enable two-step verification.
From this point on, you would need to enter a security code sent to your mobile phone anytime you log into Dropbox or link to it from a new device. But the security code process doesn’t kick in if you select the option to Remember Me when you log into your account.
Yeah, I know. All of that sounds like a major pain in the butt. But password changes and two-step verification are becoming a greater necessity in today’s tech world where more websites find themselves hacked every day. The choice is ultimately up to you, though, on where to draw the line between security and convenience when it comes to accessing your favorite websites and online accounts.