The site will also be releasing updates to several of their apps to help ease this password change process. ![]() Users can reset their Evernote account passwords by signing in then following the automated prompt. ![]() (For a more detailed explanation of the techniques, see Ars Security Editor Dan Goodin's feature "Why passwords have never been weaker-and crackers never been stronger.") Despite the precaution, Evernote's decision to reset all the passwords remains a necessary precaution. That can buy a security team time in the hours or days following the discovery of a breach. "(In technical terms, they are hashed and salted.)"Įvernote's decision to cryptographically hash and salt this information is important in the wake of this digital break-in, because the technique makes the information slightly more time-consuming to crack. These alternatives include OneNote, Google Keep, Simplenote, Turtl, Zoho Notebook, Notion, Bear, Joplin, and Standard Notes, among others, each with its unique features and pricing models. "Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption," the statement noted. Therefore, Evernote alternatives are available to users who need similar features and functionalities. However, Evernote warned that user information-including usernames, cryptographically protected passwords, and e-mail addresses-were accessed. The advisory also stated that payment information wasn't accessed. In a security notice published Saturday, Evernote said the precautionary password reset came after an investigation found no evidence of any stored content being accessed, changed, or lost. Evernote is requiring each of its 50 million users to reset their login credentials after the site's security team detected a security breach that exposed password data and other personal information.
0 Comments
Leave a Reply. |