A famous blog discovered a Reddit comment thread Monday evening that linked to a site where hundreds of usernames and passwords for the storage site were revealed in plain text.
According to the thread, those responsible for the hack are asking for Bitcoin donations (for some reason), but haven’t had much luck. As of this writing, they have raised 0.0001 bitcoin, or about $0.04.
Though the cloud storage company has not yet posted anything about the hack, it did disable the listed passwords and is forcing users of those accounts to create new passwords when they next use Dropbox, according to that Blog.
The perpetrators of the hack claim they have seven million compromised passwords. If you are a Dropbox user, now is as good of time as ever to change your password and enable two-step verification on the site.