Attackers could easily hijack user accounts for services from Dropbox, Google Drive, Microsoft OneDrive and Box if they gain limited access to computers where such programs run. The Imperva researchers developed a tool they dubbed Switcher, whose role is to perform what they call a “double switch” attack. Switcher can be deployed on the system through a malicious email attachment or a drive-by download exploit that takes advantage of a vulnerability in a browser plug-in. It can be loaded directly into the computer’s memory and doesn’t need high-level privileges to execute its routine.”]