Dropbox revealed a breach in its systems affecting Dropbox Sign, allowing unauthorized access to user data like emails, usernames, and hashed passwords. The breach, discovered on April 24, was contained within the Dropbox Sign infrastructure and did not compromise account contents or payment information. Measures taken include password resets and API key rotations
Despite the breach, Dropbox assured investors of no significant financial impact and plans to contact affected users for securing their data, while the investigation continues with a promise of further updates. ```https://www.infosecurity-magazine.com/news/security-breach-dropbox-sign/