More Tech Safety Suggestion

Last week I blogged about my Evernote account being hacked.  I reached out to some tech savvy colleagues for advice and wanted to share something with you that might be helpful.  

An IT engineer recommended that I check my email accounts for hacks by visiting https://haveibeenpwned.com

That’s not a typo – it is pwned and not owned!

Enter your email address on the page and click pwned?

I have several email accounts and I entered all of them to check.  I was surprised to find that one had been breached.  It was a government site from last summer that I use for genealogy research.  I changed the password on that site and just to be more secure, changed my email password.  

While changing my password I had another “Aha!” moment; I never took the time to really check out my email Security settings.  The devices I have connected to the email are shown but I had to pause at the Third-party apps with account access.  My bad for not reading the small print and clicking “I accept” when visiting an organization’s website!  I had given permission unknowingly to two retail organizations to have access to my calendar and contacts.  It was quite easy to disable that!  I’ve begun my holiday shopping so after I’m done, I plan on rechecking my email account to see if I somehow give permission for access that is unwarranted.  

Just like covid, behind the scene activity to your tech tools can maliciously effect you!  Take a few minutes to check it out and stay safe!

Evernote Info to Keep Your Info Safe

I haven’t used Evernote in awhile, so imagine my surprise this morning to receive an email that someone with a Mac in India signed on to my account 7 hours earlier.  Definitely wasn’t me or anyone I know!

Being somewhat paranoid, I tend to not click on links sent to me in emails.  Instead, I used my current Kindle to go directly to Evernote online as I haven’t downloaded the ap to that Kindle.  

Another surprise – I was unable to disable the device as my account was accessible only from the Kindle that I had the ap downloaded to.  I’m really not understanding that since the hacker didn’t have the Kindle with the ap on it!  Unfortunately, I’m not tech savy enough to figure out how to access my account on a different device so I then spent time on a Kindle hunt to find the device with the ap.

Took me a few minutes to figure out where the old Kindle was and to fire it up.  After getting through the ad to purchase more Evernote services, I clicked on Settings and Devices.  Sure enough, there was the hacker’s device.  Clicking “disable” hopefully blocked the hacker from having some afternoon fun with my account.  

The hacker didn’t find anything useful as after taking notes, I transfer them to whatever computer I’m using as soon as I’m done with a meeting or archive visit.  I keep nothing on Evernote.  That practice wasn’t established because I didn’t trust Evernote to keep my documents safe; it was my process to use Evernote in settings that aren’t conducive to paper and pens/pencils, such as in a library stack or outside at a cemetery with the wind blowing.  Now I’m glad that was how I used the ap!

I decided it would be wise to change my password.  I’m a little miffed with Evernote as you cannot easily do that.  The directions online say to go to Account Settings and click Security Summary.  I don’t have that, possibly because I never purchased an updgrade package.  My only option to update a password is to email them and then they send me an email and then I go back to their site and change the password.  All this for a device I don’t even use any longer.

So, adieu, Evernote.  I’ve uninstalled the ap on the old Kindle after clearing the cache and signing out of the account.  I won’t be downloading it to my new one, either.  When the pandemics over I’ll be using the note ap on my cell instead.