A couple of weeks ago, Dropbox users began to complain about receiving spam in email accounts created exclusively for the service. After investigating the issue, Dropbox confirmed that a small number of accounts were affected by a recent security breach. “Our investigation found that usernames and passwords recently stolen from other websites were used to sign in to a small number of Dropbox accounts,” the company wrote on its website. “We’ve contacted these users and have helped them protect their accounts.”
The security issue here relates to improper sharing of passwords – not really anything to do with DropBox’s internal controls. The bottom line here is that technology can only do so much. By far the biggest risks relate to poor behaviour on the part on the part of users.