Reports of Dropbox-linked email address spam
Yesterday Dropbox user David P. reported that he received a spam message to an email account that he used exclusively for Dropbox and no other service.. The spam message advertised a casino site at a recently registered domain. Quickly, other Dropbox users started to report the very same thing.Â It first appeared as if only users from Germany were affected, but it since then turned out that users from the UK and the Netherlands were also receiving spam messages to email addresses that they used exclusively for Dropbox.
The spam messages target users from different countries in their native languages, and it turned out that additional websites were advertised in the messages.
When you look up the different domains used you will notice several similarities:
- All domains seem to advertise Casino-type sites
- They have been created in the past 24 hour period
- They are registered to people from different countries
- They use Russian DNS servers
- They are registered at Bizcn
Affected Dropbox users can check the addresses that are listed in their spam messages on the following site.
Dropbox Security is currently investigating the issue but no findings have been posted as of now. At this point in time, it is not clear of it is a coordinated spam attack based on a leak, a successful hacking attempt, a malware issue on user systems, attack on email servers, or something else. Affected users are asked to submit a support ticket.
The attack itself is well organized and coordinated. As of right now, only users from Europe seem to be targeted by the spam attack.
We keep you updated as soon as we receive new information.
Update: We have received a statement from Dropbox that you find below:
Weâ€˜re aware that some Dropbox users have been receiving spam to email addresses associated with their Dropbox accounts. Our top priority is investigating this issue thoroughly and updating you as soon as we can. We know itâ€™s frustrating not to get an update with more details sooner, but please bear with us as our investigation continues.