Child Item

Someone opened some old cryptocurrency files on my Dropbox, how?

Hello,

As you can see from this screenshot, someone opened some files in my Dropbox, all these being old cryptocurrency wallets (there was nothing inside fortunately).

2023-11-22 11_30_44-Tray Assistant.png

If I check from the device log (settings-security-devices) I am the only one logged into Dropbox, from my desktop and from my Pixel phone. The last activity from my Pixel phone is set as 22h ago, same as the time these wallets have been opened.

Now: I know for sure that I didn't open any of these files since I even forgot that I have them. And I don't have any cryptocurrency app on the phone that is connected with these wallets.

How do I find out who and how they opened these files?

PS: I have 2fa activated on Dropbox since many years. No one has physical access to wither my desktop nor my phone.

Find more posts tagged with

Security

Account Access

Disagree

Accepted answers

Megan

Hi @fuserr, I just sent you an email, and I'll be happy to see you there!

All comments

fuserr

Here are the 4 Apps with permission in my account, nothing seems like a security threat:

2023-11-22 11_46_02-Apps - Dropbox - Brave.png 2023-11-22 11_46_23-Apps - Dropbox - Brave.png 2023-11-22 11_46_34-.png 2023-11-22 11_46_42-Apps - Dropbox - Brave.png

Jay

Hi @fuserr, thanks for bringing this to our attention.

This could mean that an app on your machine might have tried to access those files, not necessarily open them, so it could've been a security program or antivirus.

Is it possible that you might any apps or services that might monitor the Dropbox folder on your computer?

This will help me to assist further!

fuserr

I had only windows defender and now installed Malwarebytes to run a scan but nothing is found. How should I proceed?

The 3 files that have been "opened" and I have nothing to with it are all 3 files that have to do with wallets, cannot be a coincidence. Of all thousands of files I have in my dropbox...

Megan

Hi @fuserr, I see what you mean, but based on all the info you've provided (2fa & recent activity which doesn't seem to be from anyone else) I wouldn't worry.

You can also have a look at your events page. The Events page at www.dropbox.com/events gives you an overview of all activity in your account including files events (adds/edits/deletes).

I also think this has to do with what my colleague, Jay mentioned and that the files were not actually accessed by someone else.

However, you can always try changing your password as a security measure.

fuserr

So what other could it be theoretically?

1) A software on my desktop that has access to my synced folders (if I just copy a file it does not show up in the recent activities, so in which case does it show up?)

2) password + 2fa = not an option because there are no more accesses on the log

Again: the 3 files that have been "opened" are all files that have something to do with wallets, this really cannot be a coincidence.

I even had no antivirus software active more than windows defender so I don't know what else could be accessing those files.

Would you mind escalating this issue to a specialist?

Megan

Hi @fuserr, based on all the checks that you did, it seems that everything is okay.

However, I definitely see where you're coming from, and your need to be extra safe. If you wish, I can open a ticket on my end for you, in order for us to have a closer look into this.

fuserr

Dear Megan yes I would like the ticket to be opened thank you

Megan

Hi @fuserr, I just sent you an email, and I'll be happy to see you there!

fuserr

hey Megan I didnt receive any email unfortunately

Walter

Hey @fuserr - sorry to jump in here, but did you check your inbox and junk/spam folder for Megan's email?

This should have come on this email address.

fuserr

Yes found it! thank you

Walter

Glad to hear that @fuserr

Let us know if anything else comes up!