Dropbox users that were aware and worried about the web vulnerability affecting Dropbox shared links will be pleased to know that Dropbox has now taken steps to correct the issue and no further action is required by its users.
The Dropbox issue affected shared links to files containing hyperlinks and in certain circumstances shared links to documents could be inadvertently disclose to unintended recipients.
Dropbox was unaware of any abuse or misuse of this vulnerability but the company has announced it is now upgraded its security and taken the following steps to ensure the discovered vulnerability cannot be exploited by malicious third-parties.
– For previously shared links to such documents, we’ve disabled access entirely until further notice. We’re working to restore links that aren’t susceptible to this vulnerability over the next few days.
– In the meantime, as a workaround, you can re-create any shared links that have been turned off.
– For all shared links created going forward, we’ve patched the vulnerability.
– Additionally, if you’re a Dropbox for Business customer, you have the option to restrict shared link access to people in your Dropbox for Business team. Links created with those access controls were not affected.
For more information on the updated security to correct the Dropbox vulnerability affecting shared links, jump over to the Dropbox Blog to read the article that was posted this week.