Scope (?):  All Topics
anand
professor
3 9
10 9 2
Hot or Not?
3

eBay Was Hacked: Change Your Password

submitted on May 21, 2014 by anand in "Stores / Merchants"
Eeek

The eBay Was Hacked on Wednesday and a database with users' passwords was compromised.

eBay says there is no evidence that users' financial information was accessed. But ebay telling all users to change their passwords ASAP

eBay shares are down 1.73%(90 cents) $51.06 after the hack.

https://www.yahoo.com/tech/eba.....58249.html
     

Favorite
  Comments
  • 197924
    HouTex
    admin
    Posted by HouTex on May 21, 2014 [reply] 0 0
    They also recommend changing other sites where you have used the same password as your eBay account.
  • 197926
    JackBauer
    admin
    Posted by JackBauer on May 21, 2014 [reply] 0 0
    Oh no! Now the world is going to know I have been searching for Hummels, Beanie Babies and Chuck Norris Fears Jack Bauer T-shirts.
  • 197927
    JackBauer
    admin
    Posted by JackBauer on May 21, 2014
    [reply] 1 0
  • 197931
    clover
    professor
    1 6 7
    12 11 2
    Posted by clover on May 21, 2014 [reply] 0 0
    Curious why I have not gotten any email from eBay or PayPal.
      197932
    • JackBauer
      admin
      Posted by JackBauer on May 21, 2014 [reply] 0 0
      I haven't either.
    • 197933
    • clover
      professor
      1 6 7
      12 11 2
      Posted by clover on May 21, 2014 [reply] 0 0
      I recently changed my internet provider so maybe that has something to do with it. My local news says PayPal isn't affected. I will update if I get anything.
    • 197956
    • CouponNut
      deity
      23 14 8
      12 10 2
      Posted by CouponNut on May 21, 2014 [reply] 0 0
      I am an avid eBayer and have not received any email regarding this and have several bids pending right now too!
  • 197938
    YanBz
    admin
    Posted by YanBz on May 21, 2014
    [reply] 1 0
    Done. The password can be changed on 'My Account'->'Personal Information' page.
    Here is direct link:
    http://my.ebay.com/ws/eBayISAP.....RK:ME:LNLK
  • 197940
    HouTex
    admin
    Posted by HouTex on May 21, 2014 [reply] 0 0
    Here is more information posted today - https://blog.ebay.com/ebay-inc.....passwords/
    The company said it has seen no indication of increased fraudulent account activity on eBay. The company also said it has no evidence of unauthorized access or compromises to personal or financial information for PayPal users. PayPal data is stored separately on a secure network, and all PayPal financial information is encrypted.

    Beginning later today, eBay users will be notified via email, site communications and other marketing channels to change their password. In addition to asking users to change their eBay password, the company said it also is encouraging any eBay user who utilized the same password on other sites to change those passwords, too. The same password should never be used across multiple sites or accounts.
    The blog also said the cyberattack compromised a database containing encrypted passwords and other non-financial data, but changing passwords is a best practice and will help enhance security for eBay users.
  • 197964
    clover
    professor
    1 6 7
    12 11 2
    Posted by clover on May 22, 2014
    [reply] 1 0
    I've already gotten a bogus email from someone that I sold something to on eBay three days ago asking for an invoice. They had already paid and the item was shipped. I did see the announcement on eBay just now recommending you change your password.
  • 197995
    HouTex
    admin
    Posted by HouTex on May 22, 2014
    [reply] 1 0
    I'm surprised that eBay didn't expire passwords and force a password change the next time the users log in, instead of leaving it to the users to find out on their own and manually reset it themselves. I imagine a lot of inactive members will not take care of it, and could potentially get unauthorized activity in their accounts.
      197999
    • clover
      professor
      1 6 7
      12 11 2
      Posted by clover on May 22, 2014
      [reply] 1 0
      What surprised me even more is that I didn't get an email notification and had to go online to see the problem. I needed to change it anyway. My password was short and needed to be updated.
  • 198058
    HouTex
    admin
    Posted by HouTex on May 23, 2014 [reply] 0 0
    The email has arrived:
    [I would have preferred to get it sooner rather than later and not wait for "extensive testing" first, but I guess they needed to figure out how many people should be notified.]
    IMPORTANT: PASSWORD UPDATE

    Dear eBay Member,

    To help ensure customers' trust and security on eBay, I am asking all eBay users to change their passwords.

    Here's why: Recently, our company discovered a cyberattack on our corporate information network. This attack compromised a database containing eBay user passwords.

    What's important for you to know: We have no evidence that your financial information was accessed or compromised. And your password was encrypted.

    What I ask of you:
    Go to eBay and change your password. Changing your password may be inconvenient. I realize that. We are doing everything we can to protect your data and changing your password is an extra precautionary step, in addition to the other security measures we have in place.

    If you have only visited eBay as a guest user, we do not have a password on file.

    If you used the same eBay password on any other site, I encourage you to change your password on those sites too. And if you are a PayPal user, we have no evidence that this attack affected your PayPal account or any PayPal financial information, which is encrypted and stored on a separate secure network.

    Here are other steps we are taking:

    As always, we have strong protections in place for both buyers and sellers in the event of any unauthorized activity on your account.
    We are applying additional security to protect our customers.
    We are working with law enforcement and leading security experts to aggressively investigate the matter.

    Here's what we know: This attack occurred between late February and early March and resulted in unauthorized access to a database of eBay users that includes customers' name, encrypted password, email address, physical address, phone number and date of birth.

    However, the file did not contain financial information. And, after conducting extensive testing and analysis of our systems, we have no evidence that any customer financial or credit card information was involved. We also have no indication of a significant spike in fraudulent activity on our site.

    We apologize for any inconvenience or concern that this situation may cause you. As a global marketplace, nothing is more important to eBay than the security and trust of our customers. We know our customers have high expectations of us, and we are committed to ensuring a safe and secure online experience for you on any connected device.

    Devin Wenig
    President, eBay Marketplaces
  • 198121
    clover
    professor
    1 6 7
    12 11 2
    Posted by clover on May 24, 2014
    [reply] 1 0
    I got my notification from eBay last night (Friday, May 23rd) around midnight. Fortunately I had already changed my password thanks to anand's discussion.
  • 198137
    Solstice
    professor
    1 6 2
    11 4 1
    Posted by Solstice on May 24, 2014
    [reply] 1 0
    Thank you. I somehow missed this news.

Leave a Comment (members Sign in to comment)

Name

E-Mail (will not be published)

2 x 3 = ?

Emoticons

'Mr Green''Neutral''Twisted''Arrow''Eek''Smile''Confused''Cool''Evil''Big Grin''Idea''Red Face'

(more)


 

Browse by tags