It seems that no matter how efficient or security-conscious a company is, the hackers find some way to break into its systems. The latest in the list of fallen is Evernote’s website. Thankfully, the hackers didn’t access or modify payments information. However, they did lay their hands on users’ login credentials and other data.
The incident was revealed by Evernote in a recent blog post. The company cited that the hack took place on February 28th. The sad news for Evernote users is that the hackers were ‘able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts and encrypted passwords.’
In other words, the login credentials of more or less all Evernote users have been potentially compromised. Thankfully, the company would be resetting all the passwords. This is being done despite the fact that Evernote encrypts and salts all the user passwords with one way hash, so hacker will not be able to use any of those password.
The silver lining for the users is that any content stored on their Evernote accounts wasn’t accessed or modified by the hackers. As for the corporate users, Evernote ensures that it found ‘no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed.’
To reset the password, you need to log in to your Evernote.com account and choose a new password. Once the new password has been set, you will then be required to enter this new password on all other Evernote apps.
Courtesy: All Things D