Security Features
Dropbox security alerts and features help keep your team's accounts safe. Get notifications of suspicious behavior, such as mass data deletion and shared malware, and stay one step ahead of potential security threats.
Team security alerts for admins
Dropbox Enterprise security features provide secure collaboration for distributed teams. With security alerts and notifications, admins receive email notifications whenever suspicious behavior, risky activity, and potential data leaks are detected within the Dropbox environment.
Some of the inbuilt security alerts include sensitive content shared externally, mass data move, mass deletion, signing in from a high-risk country, too many sign-in attempts, which could be an indication of a brute-force attack on a Dropbox account. Moreover, shares made by a team member or even malware shared from outside your team.
Each alert policy has an indication of the severity, ranging from high risk to medium to low, and informational. There's also an indication of the stages of each of the alerts, whether on or off. Admins can go into each of the alerts to put in place additional settings. For example, here, the description of the alerts is provided, the severity status, and a toggle provided to the admin to turn this on or off, along with a notification setting. Here, the admin can decide to include additional team members to send this to in the security team, whether a particular user or a group.
Once this is saved, the admin will be able to view different alert types that are triggered by these policies. To view details about a specific alert, admins can go into the alerts page, where they can see alerts that have been triggered based on the configured policies. For instance, sensitive content shared externally, the severity is indicated here, the category, which is data loss prevention, who was involved in this, and when it was detected. Admins can now delve into these alerts and take further action.
From the alert details page, there's a description of what has happened and what is at risk. For example, a leak of sensitive personal data, when it was detected, who it was shared by, and the external party it was shared with. The sharing date and the file involved in this, along with the type of sensitive data in that file, such as a sample credit card number, UK NHS number, or US SSN number, identified in an Excel file shared externally with a non-corporate member.
Admins can further manage access by deleting or removing the access provided to that external party. Once this is done, the admin can acknowledge that they have reviewed this policy and clicked here.