ebay hacked (change passwords)

News reports of ebay being hacked, all users are recommended to change passwords.

Hackers apparently may have gained access to customer names, addresses, birth dates, phone numbers and email addresses.
No reports of financial data being compromised as of yet.

Already posted this in the Information Security forum but wanted to post here as well to let consumers know.

rubadub

I got no email from ebay recommending that I change it. Did anybody?

umop.episdn

rubadub wrote: »

I got no email from ebay recommending that I change it. Did anybody?

No, but if you log on there's a banner telling you to change your password

Apiarist

rubadub wrote: »

I got no email from ebay recommending that I change it. Did anybody?

I have not got any such email either. But, in any case, it is good to change passwords regularly. You may just as well change your ebay password now.

rubadub

umop.episdn wrote: »

No, but if you log on there's a banner telling you to change your password

See it now, I thought only certain users might have been effected. Really odd there was no email about it, perhaps they did not want to admit it or draw attention to it.

victor8600 wrote: »

But, in any case, it is good to change passwords regularly.

and to use different ones! I expect lots of people use the same one all over the place. Ebay are forcing you to use a more secure one now, i.e. with numbers or characters in it and not just letters.

umop.episdn

rubadub wrote: »

See it now, I thought only certain users might have been effected. Really odd there was no email about it, perhaps they did not want to admit it or draw attention to it.

and to use different ones! I expect lots of people use the same one all over the place. Ebay are forcing you to use a more secure one now, i.e. with numbers or characters in it and not just letters.

I've just had a look at my emails, I did get a mail from them telling me to change my password

Judgement Day

This came today and while it looks official my anti virus software didn't like it when I clicked to see on the Update information button for a look see. As far as I remember PayPal don't tend to email you about problems and instead inform you when you log into their site.

Bongalongherb

Be careful, there is an e-mail scam going on with a fake e-bay e-mail telling folk to change their passwords. Do not do anything from e-mail, only change your password from the main e-bay site.

Wired.com.

He also advises that there are currently lots of scam merchants sending emails with what look like to official links to eBay encouraging you to change your password. He's right, too -- it's probably best to go straight to eBay and change your password then and there.

Source: http://www.wired.co.uk/news/archive/2014-05/23/ebay-hacked-uk-investigation

A Dub in Glasgo

The following appeared in my pending folder of my email account. It is signed off with

'eBay sent this message to [correct name] (correct ebay username).'

Looks legit, went to ebay and they are now resetting passwords

beauf

Should have different user name and password for every site and not use your real personal info. Then when it gets stolen is not that big a deal.

Should probably use more than one email so that access to one doesn't compromise the others.

Use 2 stage verification. Finally have a email that isn't similar to your user name.

A Dub in Glasgo

^^^^^

Easier said than done, I have logins for over 100 websites and it is impossible to remember different details for each

beauf

Oh I agree. You'll end up using last pass or similar. I have a system to remember mine. But that is also a weakness and tbh I'm switching to a manager as I can no longer track them all. I also end up looking after others in the family. In addition as I work in IT I've a ton of passwords and usernames there too.

beyondbelief67

It's crazy that they only sent emails out yesterday when they have known about this for over a week !

beauf

Very poor alright