Dropbox has admitted that an erroneous code update on Sunday 19 June allowed logins without authentication and allowed users to access files held by other users of the file synchronisation service.
Online storage service Dropbox accidentally turned off password authentication for its 25 million users for 4 hours June 20 — although much less than 1 percent of those accounts were accessed during the period, the company said.