evernote-fan 34 Posted August 22, 2017 Share Posted August 22, 2017 Hello, Anybody knowing why Evernote does not pass the brute force test in the DashLane test? https://blog.dashlane.com/dashlane-password-power-rankings-2017/ They say: "Does the website allow 10 incorrect login attempts without providing additional security (CAPTCHA, account lockout, 2-Factor, etc.)?" @Evernote: Is there a special reason or are there any plans for implementing this? Link to comment
Level 5* DTLow 5,736 Posted August 22, 2017 Level 5* Share Posted August 22, 2017 3 minutes ago, evernote-fan said: Anybody knowing why Evernote does not pass the brute force test in the DashLane test? I think the headings on the chart provide an explanation Evernote only passed in the 2-Factor column Link to comment
evernote-fan 34 Posted August 22, 2017 Author Share Posted August 22, 2017 Yes. I do not mind the three first aspects as everybody can chose a safe password either. But the brute force attack thing should really be considered by EN! But on the other hand, Google is not better and they have one of the best security engineers in the world. Link to comment
Level 5 jbenson2 2,147 Posted August 22, 2017 Level 5 Share Posted August 22, 2017 evernote-fan Thanks for posting the link. What a slap in Evernote's face! If I was Evernote, I would work on this immediately. It hurts simply from a public relations standpoint. I'm disappointed to see Evernote ranked so poorly, especially considering their slogan. "Evernote® is a platform for human memory, designed to help individuals remember everything™." I wonder how many hackers are using this Password Power Ranking as a guide to focus on the "sites that failed to implement the most basic security requirements". Link to comment
Recommended Posts
Archived
This topic is now archived and is closed to further replies.