7 of 15Image
In March this year, the popular note-taking platform's master website was hacked, and account information of its users accessed.
Evernote, known for its mobile device applications, detected the attack early on, but the hacker or group responsible were still able to access user information including names, email addresses and encrypted passwords -- the latter luckily both hashed and salted.
As a precaution, Evernote required all of its users to change their passwords.
In a statement to sister site CNET, an Evernote representative said:
"At this time we believe we have blocked any unauthorized access, however security is Evernote's first priority. This is why, in an abundance of caution, we are requiring all users to reset their Evernote account passwords before their next Evernote account log-in. We are actively communicating to our users about this attack through our blog, direct e-mails, social media, and support. This simple step of users creating strong, new passwords will help ensure that user accounts remain secure."
In April this year, LivingSocial confirmed it was another major outlet to be the victim of cyberattack.
The daily deals website discovered its database systems were breached, while unknown hackers made off with the names, emails, birthdays and encrypted passwords of the vast majority of users -- roughly 50 million accounts in total out of 70 million worldwide.
However, credit card and banking information was not accessed.
The Washington, D.C.-based site is owned in part by online retailer Amazon, and has divisions internationally. Only Thailand, Korea, Indonesia and the Philippines were not affected, as their data systems are different.
In May this year, almost one million accounts were compromised and passwords were forced to be reset after hackers infiltrated Drupal.org's systems.
Drupal, which offers an open-source content management system (CMS) to power the back of websites, joins the ranks of Wordpress and Joomla as a popular option for millions of webmasters. However, on May 29, the security team wrote in a blog post that third-party software installed on Drupal.org servers allowed hackers to access the system. User account data on Drupal.org and groups.drupal.org were accessed, including usernames, email addresses and country information, as well as hashed passwords. The team said:
"Upon discovering the files during a security audit, we shut down the association.drupal.org website to mitigate any possible ongoing security issues related to the files. The Drupal Security Team then began forensic evaluations and discovered that user account information had been accessed via this vulnerability."
As a precaution, users of Drupal had to reset their login information. In addition, Drupal rebuilt its security systems, enhanced many servers with new security patches, and added antivirus to scanning routines.
According to Drupal's website, 1,012,335 people in 229 countries currently use the system.