Phishing emails that contain Dropbox links in the text body have been detected
According to PhishMe, emails typically appear as an incoming fax email, or as a legal case email, with the Dropbox links appearing as a link to download further information or documents. However the Dropbox links are legitimate,but once there the recipient can download a small zip file which contains an executable masked as an .scr file, or a Windows screen saver file.
PhishMe said that Windows treats .exe and .scr files the same way, so you simply have to rename an .exe to .scr. Dropbox has removed the links, but this may catch some users out as the links are legitimate and go to the cloud-based file-sharing site.
