Evernote on Saturday issued a service-wide password reset following a security breach. The company said no content on the website was affected, though usernames, email addresses and encrypted passwords were accessed by the hackers. Evernote said the attack was a coordinated effort, but the team has blocked what it said was “suspicious activity.”
“We take our responsibility to keep your data safe very seriously, and we’re constantly enhancing the security of our service infrastructure to protect Ever and your content,” the company said.
When resetting your password, Evernote suggested your typical password rules: don’t use simple words or phrases; never use the same password for multiple sites; and watch out for suspicious emails.
Evernote goes on to explain the measures it goes through to keep user passwords safe—all passwords are hashed and salted to ensure the utmost safety—but a team (or individual) still felt the need to steal. Hopefully now that Evernote has identified the issue, a similar breach won’t happen in the future.