Tumblr co-founder airs Dropbox data security concerns
Marco Arment is reported to have raised concerns over file sharing site's security during his weekly podcast.

Marco Arment, the co-founder of blogging platform Tumblr, has become the latest high-profile name to air concerns about the security of data stored on popular file sharing service Dropbox.
Arment, who left Tumblr in September 2010 to focus on the development of bookmark and reading service Instapaper, expressed his concerns in his weekly Build and Analyse podcast.
During the broadcast, Arment reportedly said he would not store anything he did not want made public on Dropbox.
A Dropbox employee could theoretically view or steal your data.
"Anything that is really sensitive or extremely valuable or needed to be kept very secret, I wouldn't store on anybody else's servers," Arment is reported to have said.
"That seems ridiculous [to me] unless I held the encryption keys, like with the online backup service I use."
Since its launch in 2007, DropBox has quickly established itself as a major player in the online file hosting market, and claims to have more than 50 million users.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
However, concerns about data privacy and who owns the copyright of any files stored on its servers have been repeatedly raised by industry watchers.
In a statement, Rob Sobers, technical manager at data security vendor Varonis, backed Arment's view, claiming Dropbox holds the keys needed to encrypt and decrypt data on their servers.
"Dropbox isn't just online backup, it's a collaboration tool. In order to offer public file sharing features, they have to be able to decrypt data stored on their servers," he explained.
"This means that a Dropbox employee could theoretically view or steal your data," added Sobers.
It's not just internal threats Dropbox users should be fearful of, added Sobers, as the site's high profile could make it a ripe target for hackers.
"Public cloud services are more likely to be hit by hackers because they are high value targets and, by definition, accessible over the internet," he said.
"Any time I store something in the cloud be it Dropbox or Twitter or Facebook I ask myself, how would I feel if this data were on the front page of the New York Times tomorrow?'"
IT Pro was awaiting a response from Dropbox about Arment's claims at the time of publication.
-
Why are many men in tech blind to the gender divide?
In-depth From bias to better recognition, male allies in tech must challenge the status quo to advance gender equality
By Keri Allan
-
BenQ PD3226G monitor review
Reviews This 32-inch monitor aims to provide the best of all possible worlds – 4K resolution, 144Hz refresh rate and pro-class color accuracy – and it mostly succeeds
By Sasha Muller