Hi. VanessaW has already recognized the risks and what she needed to do, but those are beside her point. I echo her concern: it's important to question Evernote, seeing that this is not the first security breach this service has had, and it has affected many users. I myself have only just received an email from Evernote about suspicious logins to my account, and like VanessaW, it's taken Evernote days to alert me. My account shows accesses from India, Vietnam, Russia, and South Africa, among others -- a clear warning sign that Evernote missed or failed to address immediately. Of course, I changed my password right away, but it's already been more than a week since the suspicious logins began. It's high time Evernote took stronger responsibility and beef up their security and detection, instead of just telling their users "Do this, do that." We already acknowledge what we should do; Evernote should do the same.