The incidents occurred raised a speculation that Chinese cyber units are conducting an aggressive cyber espionage campaign against governments, IT firms and industry to steal secrets and intellectual properties.
Never click on ‘reset password’ requests in emails instead go directly to the service. Never use the same password on multiple sites or services. Avoid using simple passwords based on dictionary words. From client point of view the suggestions provided by Evernote company are very precious to ensure that its data on any site, including Evernote, is secure: Recent incident to Apple, Microsoft and Facebook are in my opinion good example of incident management despite probably users will never know the entity of the attacks and its amplitude in term of data stolen. This is a critical phase, user’s information security is highest priority but in many case it collides with company need to preserve its reputation. Law enforcement and business partners must be immediately informed and it must be decided time and mode to public disclose the news without interfering with investigation and preserving users security. Hacked businesses have to immediately start investigation, adopting any countermeasures if the attack is still ongoing. How to manage data breach like this ? We must distinguish two aspects, company incident response procedure and client countermeasures. Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption.” 
The investigation has shown, however, that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts and encrypted passwords. We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed. In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost. Please read below for details and instructions. As a precaution to protect your data, we have decided to implement a password reset.
“Evernote’s Operations & Security team has discovered and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas of the Evernote Service.
0 kommentar(er)
