“Box and Dropbox have fallen victim to an exploit that allows privately shared files to be read, due to poor security practices and poor design choices in browsers. A major vulnerability was identified earlier this week in the online platform of Box and Dropbox that allows for the discovery of private file transfer links. This means private data can be read by third parties or indexed by search engines.”