We’re Still Here to Help (Even Over the Holidays!) - find out more here.
Forum Discussion
Users spoofing our company for cyber fraud
We were contacted by a dropbox sales person (Vicki Shen) stating that we have 89 drop box accounts tied to our companies email domain. We don't use dropbox. I had asked how can I address possible imposters creating dropbox accounts to fraudulently contact others under the disguise of our company's name and she ghosted me. Then I thought I would just contact someone. The only 'one' that you can contact is a bot. How do you get possible cyber crime/fraud investigated through dropbox? The fact that the sales person doesn't think cyber crime is a big deal is the main reason we prohibit employees from using dropbox.
12 Replies
I’m closing this post out. Dropbox has been zero help. They refuse to investigate potential criminal activities on their platform, almost as if they are well aware of it and “a user is a user”. I’ve tried everything I could to get in touch with someone in their security department with no luck. The customer support rep who kept telling me that Dropbox wasn’t going to investigate this issue also refused to put me in touch with someone in their security department. I suspect that this is because there is no security department or any department set to deal with client data security, cybercrime, etc. I’m comfortable with the fact that I have plenty of documentation that they are well aware of the issue with people spoofing our domain and refused to do anything about it. If anyone contacts us stating they have been a victim of cybercrime, we can provide them with what they need for legal action.
(And yes, I know Dropbox is going to delete this thread to cover their tracks.)
- Walter
Dropbox Community Moderator
Thanks for sharing your thoughts here Trainer2324
We can see that our team has already provided all the instructions and info we could at this time via your email correspondence.
Rest assured that if we detect any violation of the Dropbox Acceptable Use Policy, such as phishing, malware, or spam, we will take immediate action. Make sure to contact us at abuse@dropbox.com, as mentioned here on the thread.
Regarding your email/domain safety: It's good to note that most companies, like Dropbox, have email address verification in place to ensure that the right owners have the accounts. However, if you believe that emails were created without your company authorization, we recommend reaching out to your email provider.
Also, if Dropbox detects a suspicious sign-in attempt, we will send a one-time security code to the email address associated with your Dropbox account as an additional security step.
To sum up, for someone to fully use a Dropbox account, they would need to have access to the associated email address.
You can find more information about our security procedures here.
