I think my account was compromised. What do I do?

If you're worried that someone else has accessed your Dropbox account, or that your account was hacked, don't panic. First, check whether the following symptoms can be explained by something more ordinary:

  • I see unfamiliar files in my Dropbox. Are the files in a shared folder you belong to? If so, another member of the folder may have added them. Check your Events page or the version history of files to find out who added them. You can see which shared folders you belong to and the members of each folder on your Sharing page.
  • My files have disappeared. There are a variety of reasons why files can go missing. Use this handy guide to troubleshoot and resolve the most common problems.
  • I see someone else's photos in my Dropbox. Has someone you know used one of your computers or mobile devices lately? If so, they may have triggered Dropbox's automatic Camera Upload feature and inadvertently added their photos to your account. Also note that your Photos page now shows all photos in your account, including those that other members have added to shared folders you belong to.
  • I can't sign in to my account. Is it possible you forgot your password? If so, you can reset it and regain access to your account. Also find out what to do if you can't sign in after enabling two-step verification.
  • I'm a Dropbox Business team member. If you're a member of a Dropbox Business team, admins have the ability to sign in to your account using "Sign in as user." If you're a non-admin member of a Dropbox Business team, your admin may have signed in to your account to do any of the following:
    • View a team member's folder structure
    • Share files and folders with others
    • View, open, and download files
    • Delete files, or restore deleted files

If you're a Dropbox Business team member, and you think your account has been compromised because you see that one of the above actions has been taken in your account, first check with your team admin.

If you have checked all of the above, and still believe your account has been compromised or hacked:

  1. Reset your password (be sure to use a strong and unique password, and never give it out to anyone).
  2. On the Security page of your account settings, unlink any devices, web sessions, and apps that look unfamiliar or that you are concerned about (this will help prevent unauthorized changes to your account if an attacker linked a malicious device, web session, or app). As an added precaution, you should unlink all mobile devices and third-party apps and then relink only the ones that you need.
  3. Consider turning on two-step verification, which adds an extra layer of security to your account.
How helpful was this article?

We’re sorry to hear that.
Let us know how we can improve:

Thanks for your feedback!
Let us know how this article helped:

Thanks for your feedback!

Community answers