On May 1, Dropbox reported unauthorized access to its Dropbox Sign product (that they acquired from DocuSign). Dropbox reported that the intruder accessed Dropbox Sign usernames and email addresses for all Sign users and gained additional access to information (e.g., hashed passwords, API keys, etc) for a subset of Sign users. Dropbox reported that the intruder's access was limited to their Sign infrastructure and that their investigation is continuing. Ultimately, Dropbox reported that they did not believe that the intruder's unauthorized access would have an affect on its overall business but they said that they “remain subject to various risks due to the incident, including potential litigation, changes in customer behavior, and additional regulatory scrutiny.”
| Data | |
|---|---|
| Filing Date/Time | 01/05/2024 at 20:36GMT (16:36 EDT) |
| Link | Edgar Data |