Cyber crime has been on the rise in the past two years, with prominent social networks like Facebook, Twitter, and online data storage sites like Cloud and Strongvault having reported hacks into their database.
Now Evernote, a web based note sharing service has said that it was the victim of a systematic hack that resulted in hackers breaching their network and gaining access to users name and encrypted passwords.
Evernote said that it was forced to change the passwords of its 50 million users in order to protect their data from being stolen. As of now Evernote representatives have been unable to confirm whether or not some data theft has been carried out. Evernote spokesperson Rhonda Scott informed through email on Saturday evening that the cyber attack followed the same pattern that was shown in recent hacks on well know social networking sites, but she didn’t not elaborate any further.
She also said that they were not sure if any information from Evernote Premium or Evernote Business customers was accessed or not.
In the last year a majority of Internet based companies have disclosed cyber attacks. These companies have stated that the hackers made use of a little known Java bug that allows firewalls to be breached and user information to be accessed. Twitter reported that nearly 250,000 of its users information had been compromised in a recent cyber attack using the same Java bug.
This resulted in the removal of the Java interface altogether from these sites, with Twitter being forced to change the passwords of its users without prior notice. Scott however said that the Java bug was not employed in this case.
Hackers have been increasingly using Java to hack into public user domains and hack valuable information like credit card numbers, bank invoices, and private data, even remotely control computers to hack for them. This has resulted in a great hue and cry over inappropriate firewall protection and not enough tracking of the networks to hunt down any suspicious activity.
The developers of the Java interface have not responded to calls to correct the bug that has been causing such havoc. It is imperative that such defects be corrected as soon as possible so that no other security breach or data theft be detected as soon as possible. It is advisable that people stick to the usual email and not send any sensitive information over any Web based sharing services.