Threat Management, Incident Response, TDR

Evernote forum breached, profile information compromised

The official discussion forum of Evernote has been hacked, leaving profile information belonging to users accessible to attackers.

The note-taking service's forum is run by a third-party vendor, and has no ties to the actual Evernote Service, according to a blog post by Geoff Barry, community manager at Evernote.

The post explains that all notes remain secure, but the intruders may have accessed forum profile data including password hashes – for those accounts created in 2011 or earlier – email addresses and birth dates. Email notifications have been sent out to users whose data may have been compromised.

This isn't the first time that Evernote has been the target of a cyber attack. Just last week the company announced via its Twitter handle that it had been hit with a denial-of-service attack, and in 2013 it suffered a password breach.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.