Dropbox finally fixes security vulnerability
Cloud-based file syncing and sharing service Dropbox has taken steps to fix a security vulnerability, but only after media attention to the issue.
Dropbox competitor Intralinks discovered the security vulnerability when examining its Google Analytics web traffic data and Google Adwords reports.
Intralinks found that the web traffic data included links to confidential files including tax returns, bank records, mortgage applications, blueprints and business plans, according to a blog post. The vulnerability is linked to web page referer headers that were designed to enable websites to better understand traffic sources and are part of standard practice implemented across all browsers.