Evernote services vulnerable to attempted attack

Evernote-icon.JPG

In what may be a common occurrence in keeping information and data located in cloud-based services, the popular service Evernote recognized suspicious activity by outsiders where personal user information may have been compromised. According to a recently received email:

…the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts, and encrypted passwords.

 

In response to this security breach attempt, Evernote has reset all passwords associated with using their services – which includes the popular Evernote, Skitch, and Penultimate among others.

This means that in an abundance of caution, we are requiring all users to reset their Evernote account passwords. Please create a new password by signing into your account on evernote.com.

After signing in, you will be prompted to enter your new password. Once you have reset your password on evernote.com, you will need to enter this new password in other Evernote apps that you use. We are also releasing updates to several of our apps to make the password change process easier, so please check for updates over the next several hours.

The email goes on to advise some common tips for keeping your personal information secure on multiple sites – including complexity suggestions, never the same password on multiple sites, and avoiding click-through on emails to reset passwords that you didn’t initiate.

Given the ubiquitous nature of Evernote, be prepared for multiple Evernote service app updates.