Home Icon

Dropbox scam making the rounds, here’s how to work out what’s fake

By Leigh D. Stark | 4:15 pm 17/10/2014

Every so often, a scam or a virus makes its way into the GadgetGuy inbox, and we get to see what other people get to see in order to help you understand it. Today, it’s one of those days, so if you see a Dropbox scam, here’s what not to do.

Don’t under any circumstances get tricked by it.

That’s what not to do, so let’s help you understand how not to get tricked by examining the email scam piece by piece, starting with the scam itself:

That’s an email someone sent our way, and while it looks like a semi convincing Dropbox file sharing email, there are some things worth checking out, so let’s go through this the way a security aware person would.

First, we hover over the link and see what pops up:

The link you see here — which we’ve never seen before — is not Dropbox. Not by a long shot.

Whoever has engineered this hasn’t done much work to hide it, and in other scams, you might see a similar name to Dropbox in the domain — maybe droopbox or drapbox or DRQPBOX, just enough to confuse you.

No, here the scammers have been pretty lazy, and are redirecting you to a site that looks nothing like Dropbox in the name, but will still try and convince you regardless.

Always hover over a link in an email you’re not sure about and check where it’s actually taking you to. Just because it has the name of a company you recognise does not mean it’s real.

When we click on the link, here’s what we see:

Well, that looks like Dropbox, but there are some clues to this being a fake.

One is the URL at the top of the screen, which like the link we hovered on before, looks like this:

Another is what happens when we hover over the Dropbox links below, with all of those little menu items below the login screen — Install, Mobile, Pricing, Dropbox Blog, Branding, News, Jobs, Help Center, Get Started, Twitter, and so on and so on — liking to the same url except with a “#” on the end.

In web terms, a hash is like a placeholder, or rather a variable that either opens up a window or extra function, or just does nothing at all.

If the scam was complicated, the Dropbox links would be just like the regular Dropbox site, and would convince some of us who might be a little more skeptical, but the scammers haven’t done that and are hoping to convince you that this is real by the login screen alone.

And it’s not. This login screen is not part of Dropbox, and chances are if you use Dropbox, you keep your login and password saved, so you have to wonder why it’s not loading here (hint: the answer is it’s not Dropbox you’re looking at).

If you did enter your details, there’s a good chance they would be stored somewhere, ready for use by someone who wasn’t quite nice and was looking for a way to steal your passwords.

You might think that a Dropbox password means nothing, but most people rely on the same passwords across several accounts, so if you end up inadvertently giving someone your password for Dropbox, being an important cloud storage solution, it’s highly likely that you’re using that password for something else.

And that’s gold for scammers, because it leads to identity theft.

So with these clues in mind, you have an answer, and can email or call the friend who sent it to you that they’ve either had an email broken into, or they have some nasty viral or malware load on the computer.

As always, the ways to stop this sort of thing from happening are numerous, but most of it comes from good education and knowing how to spot a fake — like we’ve shown here — as well as keeping an up-to-date internet security software on your system.

And the person who sent it to us? We’re going to let them off by not mentioning them, but we have contacted them to tell them what’s wrong, which is what you should do if you ever get sent one, too.

Latest reviews

  • Review: DeLonghi PrimaDonna Elite coffee machine

    DeLonghi’s latest machine may have a name deserving of people who fancy themselves over the top, but its quality speaks volumes enough that its actually deserved.
  • Review: Benq WiT LED desk lamp

    Benq may not be a brand you typically associate with lights, and we know it best for monitors, but your next work light could come from some neat R&D…
  • Review: KEF M400 headphones

    A brand synonymous with excellent audio, KEF is at it again with a pair of on-ear headphones that aim to bring audio to a compact and fashionable package. Does…
  • Review: Amazon Kindle Oasis

    Electronic books have already delivered a future where we can bring all of our books with us, but the next development will be one of super thin tablets that…
  • Review: Acoustic Research M2 (ARM2) media player

    While the phone has overtaken the conventional media player, those of us with special needs and high resolution audio are embracing a new generation of media devices, and Acoustic…
  • Review: Husqvarna 136LiHD45 Hedge Trimmer

    If a guy who rarely enters his backyard can use a hedge trimmer, it’s a winner, and that means Husqvarna’s battery powered 45cm trimmer wins the gold, ticking the…
  • A phone with a difference: LG’s G5 reviewed

    LG’s quest for the ultimate flagship phone has been all about constant evolution, and for its 2016 attempt, we’re seeing the best one yet. Is it enough to unseat…
  • Review: Telstra Tough Max

    Telstra's Tough Max isn't like your ordinary phone, because if you need something that feels like it has been made for Australia, this may well be it.
  • Review: Apple iPad Smart Keyboard for 9.7 inch iPad Pro

    One feature on the iPad Pro can only be used with style of accessory: the dock connector, and it can only talk to keyboard cases. Right now, Apple’s Smart…
  • Review: Aftershockz Bluez 2S Bone Conduction earphones

    Imagine if you never had to wear an earphone again and could just hear the music in your head. That doesn’t have have to be a dream, because the…

“How do you stop yourself from being caught out by these scam artists?”

Read More

Tell us…

Will you be installing an ad blocker on your smartphone?

View Results

Loading ... Loading ...

“There’s certainly no doubt that you can find a bargain, but like always, you get what you pay for.”

Read More