This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
English
Announcements
Learn more about how Connie, a member of the Community, uses Dropbox here!

Dropbox accounts & billing

Make your Dropbox account work for you, with the help of Community users like you. Join in or start a discussion of your own.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Reporting a security issue....

Labels:

Reporting a security issue....

rew2
New member | Level 2
December

I just got an Email: Someone logged into your account, was this you <link>yes <link> no. 

 

This is a typical scam to fish for people's credentials right? 

 

Well... one thing that the legitimate versions do is to start with hello <firstname>, with the actual name of the person account-holder filled in.  The scams usually start with "hello, " or with "hello firstname" i.e. with the string "firstname" like that. 

 

Weeeelllll...... I'm pretty sure I got a legit one (even if it wasn't me!) that started off with "hello firstname" with the literal text "firstname" in my language. My guess is that hte original english works, but that some or all foreign language ones don't. 

 

My guess is that the template for each language is: hello $firstname and that the Dutch translator should be instructed not to translate the stuff after the $ signs... So "hello" translates to "Hallo" in dutch and "$firstname" should remain "$firstname" and not be translated to "$voornaam" or "voornaam". 

 

Another idea: Make it possible for people to report security issues. I couldn't find it. And the chatbot (who takes ages to type "please give me your question") does absolutely nothing with "I want to report a security issue". The programmed answer might be to a reporting form, or just an Email address. That would work. 

Labels:
  • 0 Likes
  • 2 Replies
  • 71 Views
0 Likes
Reply
2 Replies 2

Re: Reporting a security issue....

Lusil
Dropboxer
December

Hi there @rew2, thanks for posting here today!

 

Generally, if you receive a suspicious email notification, the first step is to check if it came from an official domain. 

 

From there, you can forward the suspicious email to abuse@dropbox.com for our team to investigate.

 

You can find more information about this, here

 

Have a look through it and let me know if you have any other questions. Cheers!

Lusil
Community Moderator @ Dropbox
dropbox.com/support


Heart Did this post help you? If so, please give it a Like below.
:arrows_counterclockwise: Still stuck? Ask me a question!
:pushpin: Tips & Tricks Find new ways to stay in flow or share your tips on how you work smarter with Dropbox.

0 Likes
Reply

Re: Reporting a security issue....

rew2
New member | Level 2
December

You are no better than a bot. You trigger on a keyword, and respond with the canned response. 

 

Expertise level: 0/5

customer sympathy: 0/5

overall experience: 0/5

 

0 Likes
Reply
Poll
Are you starting new work habits this year?
Vote
Hide Results
Well, we know it can be hard to keep up good habits, so we made a new working from home cheat sheet, with some good habits, some things to avoid and some tips for making your day a little easier. Check it out here.
Who's talking

Top contributors to this post

What do Dropbox user levels mean?
Need more support?