Critical Flaw in Evernote Add-On Exposed Sensitive Data of Millions

Sergiu Gatlan reports:

A critical flaw in the Evernote Web Clipper Chrome extension could allow potential attackers to access users’ sensitive information from third party online services.

“Due to Evernote’s widespread popularity, this issue had the potential of affecting its consumers and companies who use the extension – about 4,600,000 users at the time of discovery,” says security company Guardio which discovered the vulnerability.

Read more on BleepingComputer.

About the author: Dissent

Comments are closed.