Search the Community
Showing results for tags 'phishing'.
Found 4 results
Has anyone had a random note in their book that they have no idea where it came from? I ended up clicking on a link within the note which routed me to a landing page for a weight loss supplement. The following link is where I was redirected to - probably best not to click through: http://diet.com-yc21.net/fyda/inadsyda/ See attached images. Any ideas?
I received a highly suspicious Phising email this morning. It claimed passwords needed to be reset. DO NOT CLICK ANY LINKS IN THAT EMAIL! (If you fully read the email, you'll note that it was a direct copy from an existing Evernote email, where they specifically warn you to NEVER CLICK A LINK IN AN EMAIL. The attacker had then modified the email to insert links well above the warning that they didn't even read.) If you hover over a link you'll notice it redirects to a non-evernote web site. It then asks you to ENTER YOUR CURRENT PASSWORD. If you have entered your password, you should consider yourself compromised. Had this been a serious alert from Evernote, you would have been instructed to visit Evernote from your Bookmarks, or enter it directly. At that point you should have seen a link to reset your password via email. Remember people, NEVER BLINDLY TRUST AN EMAIL. They are easily forged and companies already have established policies to verify your identity through established email accounts. You may wish to reset your password immediately, especially if you have clicked a link in the aforementioned email.
I received a phishing attempt today that purported to be from Evernote. The subject line of the email was "Image has been corrupted" along with part of my name in the subject line. The scam came from "Evernote Share." The body of the email read in part, "Image has been corrupted. DSC_76284927.jpg 884 Kbytes." I've attached a screen shot of this email. The email contained two clickable links.
I live in Evernote. Evernote is mission-critical to my business. Here's how they should have handled this situation: Send out an email to their 45M users before they configure the client to pop up a "change password" message. Maybe not everyone will have read that email before they use Evernote but at least Evernote will have made an attempt at warning them. The client message should say that the user needs to change their Evernote account password. It should not display the email address associated with their Evernote account with the wording "Your password seems to have changed...". That message is completely inaccurate and confusing to the ordinary user.