Infiltrator Posted May 17, 2011 Share Posted May 17, 2011 Updated Popular cloud storage service Dropbox is misleading users into thinking it is more secure than it really is, says a security researcher and academic, who has asked for the FTC to investigate. Read more: http://www.theregister.co.uk/2011/05/16/dropbox_ftc_not_good_enough/ Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 17, 2011 Author Share Posted May 17, 2011 One of the reasons to encrypt your data before uploading it to the cloud and least but not last, DO NOT upload confidential information. Quote Link to comment Share on other sites More sharing options...
digininja Posted May 17, 2011 Share Posted May 17, 2011 A friend told me about his research into this last year at Brucon, was sworn to secrecy at the time but he said given a key bit of info about a file he could download it from their servers. Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 17, 2011 Author Share Posted May 17, 2011 A friend told me about his research into this last year at Brucon, was sworn to secrecy at the time but he said given a key bit of info about a file he could download it from their servers. I wouldn't be surprised if they can download end users information from their servers. But again its something that the end users should be aware and cautious about when uploading their information to a server they don't know about. Furthermore its something that ends users should learn more about and become more aware and cautions of the dangers of storage clouds. Quote Link to comment Share on other sites More sharing options...
digininja Posted May 17, 2011 Share Posted May 17, 2011 Unfortunately users don't care and I don't think they ever will, all they see is the shiny adverts about making their life easier and they go for it. If they have to put an extra step of encrypting something in the path of putting their stuff online then they will just go elsewhere. Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 17, 2011 Author Share Posted May 17, 2011 Unfortunately users don't care and I don't think they ever will, all they see is the shiny adverts about making their life easier and they go for it. If they have to put an extra step of encrypting something in the path of putting their stuff online then they will just go elsewhere. And the funny thing is when something goes wrong they go blaming the company or the person in charge, they never think twice about the consequences. Just like you said, they don't care and never will. Quote Link to comment Share on other sites More sharing options...
digininja Posted May 17, 2011 Share Posted May 17, 2011 They reckon more people complained about the PSN network being down and not being able to play games than complained about having their credit card details stolen. Quote Link to comment Share on other sites More sharing options...
Remotesh Posted May 22, 2011 Share Posted May 22, 2011 Thanks for opening my eyes about Dropbox. Good thing the only thing I use it for is to sync my Minecraft Saves across my three computers. :D Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 22, 2011 Author Share Posted May 22, 2011 Thanks for opening my eyes about Dropbox. Good thing the only thing I use it for is to sync my Minecraft Saves across my three computers. :D These issues shouldn't stop you from using their service altogether, if you are going to upload personal information make use of encryption and use AES 256 bits. That should stop them from preying on your information. Quote Link to comment Share on other sites More sharing options...
Remotesh Posted May 23, 2011 Share Posted May 23, 2011 These issues shouldn't stop you from using their service altogether, if you are going to upload personal information make use of encryption and use AES 256 bits. That should stop them from preying on your information. I usually don't put any personal info out without encryption. But while on the topic, what are a few programs you guys use to encrypt your data? Personally I use encfs if I know I'm going to be on a Linux computer, or TrueCrypt for cross environments. Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 24, 2011 Author Share Posted May 24, 2011 I use NotepadCrypt to encrypt text messages, then Truecrypt to encrypt text file and lastly OpenPGP to create a digital signature of the file. So that way if the file structure or integrity has been tempered, I would know. Yeah i know, you can call me paranoid.... Quote Link to comment Share on other sites More sharing options...
Remotesh Posted May 25, 2011 Share Posted May 25, 2011 Perfectly normal for someone who could have a lot to loose if their files have been tampered with. Other than a few C++ programs, a web design template, and my Minecraft saves. I dont have anything that valuable to loose on dropbox so i don't take extra steps to encrypt that data. Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 26, 2011 Author Share Posted May 26, 2011 In fact there are people who actually use these online services to store their personal information. I'd still use it for simple file storage, like mp3 or other less sensitive files. Besides, if you don't want to leave digital footprints behind or run the risk of someone spying on you, you could use the same technique as Osama Bin Landen used to deliver a message without being traced. Using an USB stick and having it sent or delivered by a post office. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.