Of course, that particular security hole has been closed by now - we hope. As the ZDNet story about the problem pointed out, “The so-called ‘man-in-the-cloud’ attack is said to be a common flaw in most cloud-based file synchronization services.”
In the summer of 2015, an exploit was discovered that let baddies get into Google Drive, Dropbox, and OneDrive accounts without knowing your password. We all trust cloud-based file storage services to keep our data safe from prying eyes, right? Maybe we shouldn’t.