Pay special attention when clicking on links in e-mails supposedly from Dropbox.

Another wave of phishing targeting Dropbox users is on the rise, with malefactors sending e-mails that read “A new document was sent to you via Dropbox” or “Please find the attached file I sent using Dropbox” — standard phrases you see when someone shares a file with you.

But if you follow the link, you’ll end up on a fake site that tells you that the document is protected and requires you to enter your e-mail address and password to access it. If you do so, you’ll be giving the crooks access to your e-mail account.

What to do:

  • No website other than your e-mail provider’s should ask you for your e-mail address together with the password you use to access it. If prompted to provide this data by any other site, ignore it — it’s a scam.
  • Before clicking on links in e-mails supposedly from Dropbox that urge you to access a file, contact the supposed sender another way (such as by telephone) to be sure it was really them who sent the file.