Evernote, the popular online note taking suite, was compromised by hackers attempting to access “secure areas of the Evernote service.” This is according to the Evernote Operations and Security team, earlier this morning.
The team says that they discovered and blocked the suspicious attempt on the Evernote network, but further investigation showed that the hackers were able to gain access to user information including usernames, email addresses, and encrypted passwords.
The Evernote team said no evidence was found that user content stored on its servers had been compromised. It is also reassuring customers that the hackers did not access any payment information for Evernote Premium or Evernote Business subscribers.
But just to be safe, Evernote is now requiring a service-wide password reset for all users to ensure security. After accessing your account on the web, you will be prompted to create and enter a new password for the system. Updates to its mobile apps to “make the password change process easier” will be released soon.
Evernote is asking that all users take caution in creating their new passwords and follow these guidelines:
- Avoid using simple passwords based on dictionary words
- Never use same passwords on multiple sites or services
- Never click on “reset password” requests in emails – instead go directly to the service
If you have any questions about your data being compromised, Evernote asks that you contact their support team.