You might see that the Dropbox Community team have been busy working on some major updates to the Community itself! So, here is some info on what’s changed, what’s staying the same and what you can expect from the Dropbox Community overall.

Forum Discussion

Ethan04's avatar
Ethan04
New member | Level 2
2 years ago

Identify Scam Email

This email has been sent from a business email connected to by business. I am looking to check if this in fact a malicious scam email (as we have initiated no such file share) I have followed the security steps to: remotely log out of all devices, reset passwords, and add 2-factor authentication.

 

I have redacted the personal information of the account but behind the redactions are the full name and business email of my colleague. I have hovered over the email and it seems to be the actual email.

I have hovered over the links and they seem to be similar to dropbox links but with extra lines of characters between the / /  I will paste the links below **please do not click these links if you are unsure of their intend** I am only adding in for reference

[removed per Community Guidelines]

mailto:no-reply@dropbox.com

  • Nancy's avatar
    Nancy
    Icon for Dropbox Staff rankDropbox Staff

    Thanks for posting this on our Community, Ethan04!

     

    Nice job on taking these precautions on your Dropbox account to ensure its security. I’ve also removed the shared links from the forum.  

     

    By the looks of it, this is a legit Dropbox email, as it’s coming from one of our official domains

     

    Did you check with your colleague to make sure they’re the ones that sent you this? If not, please delete this email on your end, as well. 

     

    Finally, if you go to your Shared page on www.dropbox.com, are you seeing the file that’s mentioned in the email? 

     

    Keep me posted for any updates.

  • e4je's avatar
    e4je
    Explorer | Level 3

    At present, we have received a large number of file sharing emails related to Dropbox. The content of the email is for users to share a PDF or Word file, and the file encryption requires the recipient to receive an email verification code before it can be opened. For this type of sharing, when the file is opened, it is phishing information. Since sending such emails in large batches will affect Dropbox's sending reputation, is there any relevant policy that will restrict this type of behavior? If Dropbox cannot restrict this behavior, some companies may block the domain name to alleviate the receipt of phishing emails. Case。

    • Hannah's avatar
      Hannah
      Icon for Dropbox Staff rankDropbox Staff

      Hey e4je, thanks for bringing this to our attention.

       

      If you received emails with suspicious contents or links for shared files, etc., we suggest forwarding these emails to abuse@dropbox.com.

       

      Don't create and send a copy of the email, just forward it as it is.

       

      You won't receive a response, but our team will know what to do.

       

      Thanks again for reporting this!