Your workflow is unique 👨‍💻 - tell us how you use Dropbox here.

two factor authentication

20 Topics

I can't log in to Dropbox 'Two-step verification text message can't be sent'
I am facing the 2 factor authentication by SMS error. The text code could not be sent. Not sure what happened. Yesterday I was still able to receive the code via sms and access normally but can't now and there is no other option to verify because i can't now access the account setting Could anyone please kindly provide me the recommendation? or Is this just the dropbox system error that we need to wait?
Solved
Chachchol
7 months ago Place Security and Permissions
892Views
2likes
9Comments
Phone verification issue - no backup codes and no connected devices
java, did you get an answer to your issue. can you login to dropbox eventually? Ihave the same phone verification problem. I don’t have backup code, no connected device. Tried very thing including norecognido mode. Still can‘t login……
dancinggrace
1 month ago Place Security and Permissions
67Views
1like
1Comment
Someone accessed my Dropbox account and I can't get help
Dropbox Plan Professional Are you a Team Member or Admin? No Do you have access to the email linked to the account? Yes Are there any devices connected to your Dropbox account? Phone, tablet, work laptop Question or Issue A few days ago, My Dropbox account was hacked by an individual calling themselves Samuel Shimb (see screenshot below). They managed to get access to my account even with 2FA enabled (via SMS)! I want to make people aware of this and the fact that, when I raised this to Dropbox's chat and Support people, they downplayed it and said they's pass it along to their colleagues. Even when I mentioned in my communication with them that I had 2FA enabled, but did not receive any 2FA OTP, in their responses, they still went ahead to say that I must enable 2FA. I have been asking for escalations without any assistance on this matter. I am a paying Dropbox Professional customer, and I want to know how someone accessed my account outside of the normal authentication flow. Even if the hacker managed to obtain my Dropbox password (which I was not using anywhere else by the way), I want to know how they bypassed the 2FA. There were no indications in my GMail inbox of someone trying to reset my Dropbox password (so the hacker did not gain access to my email account first). I was able to login normally using my Dropbox account even after the attack. This has resulted in sensitive information being exposed to an attacker whose intentions I do not know, including work files. However, Dropbox staff have been downplaying this isse. Maybe because this could be a vulnerability on the side of Dropbox and they won't admit that.
phla
4 months ago Place Security and Permissions
490Views
1like
11Comments
Generating recovery/backup codes not working
Hi! Does anyone of you having problem generating recovery/backup codes? Whenever i click it it asked me for a password but nothing loads. this has been like for days now Can someone check?
Solved
Narciso C.
1 year ago Place Security and Permissions
1.1KViews
1like
23Comments
My password was changed by someone else. What are the next steps?
Ok, here is my story - looking for info and/or advice. My Xfinity email account has been hacked several times over the past year. The last time (5 months ago) and yesterday, the hackers were able to use the email account to gain access to my Dropbox account. Last time, I enabled 2-factor security in Dropbox with both a mobile authenticator app and physical security keys. Yesterday, my Dropbox password was hacked and changed... I knew it was happening because I was aware that my email was being hacked and was literally dealing with it as it was happening. I realized that my Dropbox password was changed and I immediately changed it again. I WAS asked for 2-factor verification using the mobile app. I might have been asked for the security key, too - I don't remember exactly as I was dealing with several things at once. Point is that I WAS asked for something 2-factor to authenticate and allow the password change to occur. What I find troubling is that "they" were able to change the password/gain access to my account with 2-factor in place... Isn't that the whole point of having 2-factor? A physical "key" which you must be in possession of in order to make certain changes to the account??? I chatted with Luis in Customer Support - absolutely NO HELP WHATSOEVER - basically stated "no idea how that happened" and said that the problem was probably my computer's security or that I had used public wifi... Public wifi never happened. I pressed him to escalate the case or forward it to a security team (does that even exist??). He asked to move the chat to email - I suspect as a way to get rid of me.. Any info / advice would be appreciated. Thanks for your time.
Solved
mathetesbl
2 years ago Place Security and Permissions
15KViews
1like
5Comments