According to Evernote's Engberg: "In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed, or lost. We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed."However, he said: "The investigation has shown … that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts, and encrypted passwords. Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption. (In technical terms, they are hashed and salted.)"Engberg also advised all online users to follow these three important steps to ensure their data is comparatively secure on any site, including Evernote:1. Always avoid using simple passwords based on dictionary words.2. Never use the same password for multiple services or sites.3. Never click on "Reset password" requests in email messages: Instead, go directly to the relevant service to reset a password.