Evernote note-sharing service says hackers stole some user data

Sat Mar 2, 2013 9:27pm EST

(Reuters) - Evernote, a Web-based note-sharing service, said it was resetting the passwords of its 50 million users because hackers managed to breach its computer network and access some usernames, email addresses and encrypted passwords.

Evernote spokeswoman Ronda Scott said via email on Saturday that the attack "follows a similar pattern" to other cyber attacks on Internet-based companies in recent weeks, but she did not elaborate.

"In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost," the company said on its website. "We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed."

Scott declined to say how many accounts had been exposed or whether it might be possible for the hackers to unscramble encrypted passwords.

A series of technology companies including Facebook Inc, Apple Inc, Microsoft Corp and Twitter have recently disclosed cyber attacks. In the majority of those cases, the companies said the unknown hackers exploited a bug in Java software and that no user information was compromised.

Twitter is the only major Internet company that has recently reported that its user information was exposed to hackers. On February 1, Twitter reset passwords for some 250,000 accounts whose encrypted passwords may have been accessed.

Scott said Evernote believed that the hackers did not exploit a bug in Java when they broke into the company's system.

Evernote is a privately held company whose major investors include Meritech Capital, CBC Capital, Sequoia Capital, Morgenthaler Ventures, and DOCOMO Capital.

(Editing by Tiffany Wu and Peter Cooney)

We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see http://blogs.reuters.com/fulldisclosure/2010/09/27/toward-a-more-thoughtful-conversation-on-stories/
Comments (1)
DougAnderson wrote:
Move to the cloud they said.

Mar 03, 2013 1:03am EST  --  Report as abuse
This discussion is now closed. We welcome comments on our articles for a limited period after their publication.