Popular online personal organiser app Evernote has issued a service-wide password reset for its entire user base after ‘suspicious activity’ was identified on the network.
Reports of an attack on the company’s in-house systems that allowed access to user’s personal data surfaced over the weekend, although Evernote denies that information stored was compromised.
A post on Evernote‘s official blog, said: “We have found no evidence that any of the content you store in Evernote was accessed, changed or lost.”
The firm did however acknowledge that “the investigation has shown, however, that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with the Evernote accounts and encrypted passwords.”
Although passwords were accessed, the company stressed that the one way encryption employed means that uncovering the actual passwords would have been an incredibly difficult task for the attackers.
The cloud-based service has an estimated 50 million users across its standard Evernote, Evernote Premium and Evernote Business products. All customers have now been prompted to reset their passwords by signing into their account on evernote.com. Users are also advised that, once created, the new password must be entered into other apps used with Evernote.