Hey Folks, I am Jesse Lesperance and am the Head of Security at Evernote.
Jumping in with a couple of observations:
Here’s another piece of coverage [https://www.cyberscoop.com/evernote-patches-flaw-google-chrome-extension/] with more accurate and specific information. The original Guardio press release is here:https://www.prnewswire.com/news-releases/guardio-discovers-major-vulnerability-in-evernotes-chrome- extension-300866322.html
As mentioned in the CyberScoop coverage above, Guardio does not believe that anyone took advantage of the bug. At Evernote, we have not found a