Daily News header

Evernote Issues Mandatory Password Resets After Security Breach

By  

Mandatory Password Reset for 50 Million Users

Evernote has issued a mandatory password reset for 50 million users after their servers were hacked.

Evernote is a suite of software and services designed for note taking and archiving. A "note" can be a piece of formatted text, a full webpage or webpage excerpt, a photograph, a voice memo, or a handwritten "ink" note. Notes can also have file attachments. Notes can be sorted into folders, then tagged, annotated, edited, given comments, searched and exported as part of a notebook. Evernote supports a number of operating system platforms (including OS X, iOS, Chrome OS, Android, Microsoft Windows, Windows Phone, BlackBerry, and WebOS) and also offers online synchronization and backup services.

evernote

Below is the security warning that Evernote issued:

Evernote's Operations & Security team has discovered and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas of the Evernote Service.

As a precaution to protect your data, we have decided to implement a password reset. Please read below for details and instructions.

In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost. We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed.

Password Encryption Measures are Robust

The investigation has shown, however, that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts and encrypted passwords. Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption. (In technical terms, they are hashed and salted.)

While our password encryption measures are robust, we are taking additional steps to ensure that your personal data remains secure. This means that, in an abundance of caution, we are requiring all users to reset their Evernote account passwords. Please create a new password by signing into your account on evernote.com.

Reset Your Password on Evernote.Com

After signing in, you will be prompted to enter your new password. Once you have reset your password on evernote.com, you will need to enter this new password in other Evernote apps that you use. We are also releasing updates to several of our apps to make the password change process easier, so please check for updates over the next several hours.

As recent events with other large services have demonstrated, this type of activity is becoming more common. We take our responsibility to keep your data safe very seriously, and we're constantly enhancing the security of our service infrastructure to protect Evernote and your content.

There are also several important steps that you can take to ensure that your data on any site, including Evernote, is secure:

Avoid using simple passwords based on dictionary words
Never use the same password on multiple sites or services
Never click on 'reset password' requests in emails - instead go directly to the service.

Thank you for taking the time to read this. We apologize for the annoyance of having to change your password, but, ultimately, we believe this simple step will result in a more secure Evernote experience. If you have any questions, please do not hesitate to contact Evernote Support.

The Evernote team

Are you an Evernote user?

Are you an Evernote user? If so, will you stop using Evernote because of this hack? Comment and let us know!

Tim Martin is a Technology Specialist, Follow him on Facebook at facebook.com/tsmartin75

  Please leave a comment here     If it does not display within 10 seconds, please refresh the page

Related High Tech News

4th Annual Christmas in July with a Taste of Tequila for Tampa Bay business owners who partner with Bay Area business associations, organizations to connect to the community.
The film Living Dot Com Premiered in Hollywood recently, about the new wave of internet millionaires, and the movie and party still has Hollywood talking.
Lady Liberty needs her mighty dimensions to hold a 23-foot-high cement tablet in one hand; the 'Torch of Freedom' high above her head, in the other hand; and the hopes and dreams of millions, upon million, of immigrants cradled in her bosom.
24/7 Defense Against Data Attacks. CIS Cyber Security is a Tampa based company focused on educating, securing and business against advanced security threats.
VPN technology is expanding across sub-Saharan Africa, with Namibia becoming the first country bring high-tech interconnectivity to international customers.
Shannon K. Rose reports that Ben Bressington and his USA Based Team at LiquidVape are officially now the Authorized Master Reseller for Vapormones.

 

NewsBlaze Writers Of The Month



Popular Stories This Month

newsletter logo

NewsBlaze
Copyright © 2004-2014 NewsBlaze Pty. Ltd.
Use of this website is subject to our Terms of Service and Privacy Policy  | DMCA Notice               Press Room   |    Visit NewsBlaze Mobile Site