Following the recent news of a hacking attempt on Evernote, the digital note-taking service, in which usernames, users’ email addresses and encrypted passwords were accessed, security company Check Point is warning users to beware of phishing emails which may come from third-parties posing as Evernote to try and trick users into giving other sensitive information.
Check Point UK MD Terry Greer-King said: “Evernote has done exactly the right thing by requiring all users to reset their passwords. But users should do this by directly accessing the website, and should be cautious about clicking on links in emails they receive, no matter how authentic the emails appear to be. There’s a risk that external parties could use the email addresses exposed in the attack to send phishing emails to users, to try and harvest sensitive data.
“In 2012, we surveyed over 2,600 C-level and IT staff at firms globally, and found they reported an average of 68 new security attack attempts per week, with theft of customer data as the primary target. This issue isn’t going away.”