Revoke access to any applications that you are suspicious of or that have accessed your account from an IP address you don't know. Review the authorized applications and access history for your account. Choose a unique password that you don't use on any other website. All that you do by paying them is encourage this malicious behavior.Ĭhange your password immediately. Look at your access history, they are not the only ones who have downloaded your notes. I see from looking at the hacker's bitcoin address that they successfully got 2 people to give them the $300 requested. I baited the hackers into admitting their malicious intent via their email account and was told by protonmail that this would be sufficient to make their account deactivation permanent. I have already contacted protonmail about this and have been informed that the hacker's email listed in this note has been temporarily deactivated. Evernote support says this is not a breach, though, and they would be the ones to know. It could be from some public list of passwords, but I am a bit skeptical.
I personally am a bit confused about where they got my password as I have phased it out of my accounts a while ago and it has only been in a single breach on haveibeenpwned, compared to my email which has been in quite a few. I can actually see looking back in my account access history that my account has been accessed over the past 3 weeks by devices in places like Russia, Brazil, Mexico, China, Vietnam, South Korea, and Egypt. This is a note posted directly in someone's unsorted notes and includes your evernote password in plaintext. As such, I am posting the message, with content redacted, so at least when people search the message online it doesn't seem like no one else is dealing with this problem. This is fine, but when the mods remove a post, people don't see the mod saying to remove content. Unfortunately the posts I have seen on this subreddit have included personal information and so the mods remove it. There seems to be someone getting passwords for people's evernotes accounts and attempting to extort money or they will post sensitive information online. Why 300$? You can lose much more if your data will be used in crimes or will leak to forums. We learn by our mistakes.Īuth:**:** Otherwise, all your notebooks & notes will be automatically posted to hacking forums in 5 days, where people know what to do with your sensitive data (ID, driver license, passwords, etc.).įorums: verified, bhf, exploit, hackforums.
You should pay 300$ to Вitcoin address Īnd then write an email to All of your notes and notebooks were downloaded with all attachments.
0 kommentar(er)
