Dropbox has confirmed to the media that a 5GB archive of files containing the email addresses and hashed passwords for 68,680,741 accounts is genuine. Dropbox did warn that it suffered a security breach back in 2012, and that an undisclosed number of users email addresses were exposed although the company made no mention at the time that hashed password may also have been put at risk. My advice?Enable two-step verification on your Dropbox account, this is just a bloody good idea.”]
Source: https://grahamcluley.com/millions-dropbox-users-advised-change-passwords/