Evernote has taken steps to analyze password data leaked from the Adobe breach in order to alert users whose accounts may be vulnerable to compromise because they used the same passwords.
Affected users are receiving notifications directing them to change their login credentials, and is offering instructions on how to utilize their Two-Step Verification option for greater account security.
“There were published reports recently of a security breach at Adobe that may have exposed private information, including Adobe passwords, email addresses and passwords hints of millions of users. The list of compromised Adobe accounts has been uploaded to the web. We compared this list to our user email addresses and found that the email address you used to register for an Evernote account is on the list of exposed Adobe accounts,” one notification stated.
Two weeks ago, Facebook similarly began notifying those who used the same login credentials for their social network account as those compromised in the Adobe breach, and took the extra measure to actually block vulnerable profiles until the credentials had been updated.
Adobe officials last month confirmed that the company was the victim of a long term network breach which exposed consumer data including passwords and credit card information, as well as exposing the source code for some of their leading products.
Adobe initially acknowledged the breach after Brian Krebs of KrebsOnSecurity had connected the incident to a recently discovered compromise of multiple consumer data brokers, including LexisNexis, Dun & Bradstreet, and Kroll Background America.
Researcher Ken Westin also conducted analysis of the data leaked from the Adobe breach and found that 234,379 military and government email addresses, encrypted passwords and password hints in the compromised database, in addition to more than 6,000 accounts from defense contractors such as Raytheon, Northrup Gruman, General Dynamics and BAE Systems.
Read more Here…