WhatKatDid

Man, you both must have so many friends. I’m waiting on reply from Evernote employees, so in the meantime i’m going to enjoy my full and exciting life, so I won’t have time to reply to either of you! Hope you can do the same!

Hey Pink Elephant, As a long term Evernote user (as of 2015) many of these security measures were not Availiable at the time. Why not roll out these features as compulsory, as Xero accounting software does rather than optional? It seems as though this is an ongoing issue, yet to be truly solved by Evernote. In relation to why you suggest I should be annoyed with myself: 1. Evernote should have notified me during the original breach, so I can secure my account and information. -You want me to say- yes, it is my fault I was not notified earlier. 2. It was due to the account being re-upgraded to premium that these hacks went unnoticed by me. - You want me to say - Yes, It’s my fault for upgrading to the paid version thus allowing invisible breaches.

Hey Gazumped, I have since put in both requests with both customer service and the legal team. I wanted to share my experience on the support forum as I had not found an experience the same as mine, similar, but not the same. I wanted to make sure the variations were recorded. Thanks kindly for your help on the matter. I will update the thread as more unfolds.

Hi Guys, My Evernote Account has been hacked. After upgrading to premium, my account has had 20 new devices added to it from a range of international locations over the past 3 months. I was notified of the activity this morning, and shocked to find a string of activity that clearly was not mine. I have had a few documents that were sensitive in Evernote, my rental applications which have photocopies of my id and heath care card. (98% of my Evernote was used for study, recipes, artwork and scanning receipts) There were 2 other physical traces that the hacker left behind. 1.) Search history contained 2 previous searches for “seed” and “mew”. I assume mew refers to “my e-wallet”. 2.) They made a note. Titled “ethereum key”. And containing a long address of numbers and letters, and a private key, also containing many letters and numbers. It appears that there is no ransom note, however I assume the ethereum key was intended for me to make a ransom payment into an account. My fiancé says that possibly a bot was looking only for seed/e wallet/ crypto accounts information and that my identity is safe. Unsure. I have now: revoked access to the devices, added 2 factor Authentication, changed my password, removed data with personal information, Evernote: I am annoyed that this took place after reactivating my premium account. Im annoyed that only now, after months of mysterious use, that I have only just been notified. What can i do to be refunded/reimbursed for the service that I PAID FOR, not letting me know when the first suspicious activity occurred on the account, and the compromised personal data?