Over 50 million Evernote users advised to reset their passwords after security breach
Over 50 million users of online note-taking service Evernote have been advised to reset their passwords follow a security breach on the service over the weekend.
Speaking via a blog post Evernote’s Dave Engberg said the services operations and security team has spotted “suspicious activity” which appeared to be “a
coordinated attempt to access secure areas of the Evernote service”.
Although users have been assured Evernote has taken all measures possible to ensure their security the service has still requested that “all users reset their Evernote account passwords”.
Speaking of the attack LogRythm vice president and managing director of international markets, Ross Brewer, said: “With cyber attacks becoming increasingly frequent and sophisticated, today’s organisations must be constantly aware of the evolving cyber threat - ditching the common and outdated reactive approach to security – if they are to have any hope at protecting themselves. As such, companies need to start introducing mechanisms that give context to data and facilitate a deeper understanding of all network activity in real time.”
Brewer also said the breach was reminiscent of 2011’s “stream of notorious data breaches” where the likes of RSA, Sony and Google were compromised, adding: “It’s disappointing to think that as an industry, it seems very few lessons have been learned since then.”
Brewer continued: “To truly learn from these high-profile breaches, organisations need to deploy mechanisms for proactive, continuous monitoring of IT networks to ensure that even the smallest anomaly can be detected before it becomes a bigger problem for all. Only then will they gain that critical level of insight needed to effectively address data breaches.”