Usr6 Posted May 21, 2014 Report Posted May 21, 2014 Auction site eBay is forcing users to change their passwords after a cyber-attack compromised its systems.The US firm said a database had been hacked between late February and early March, and had contained encrypted passwords and other non-financial data.The company added that it had no evidence of there being unauthorised activity on its members' accounts.However, it said that changing the passwords was "best practice and will help enhance security for eBay users"Cyberattackers compromised a small number of employee log-in credentials, allowing unauthorized access to eBay’s corporate network, the company said. Working with law enforcement and leading security experts, the company is aggressively investigating the matter and applying the best forensics tools and practices to protect customers.The database, which was compromised between late February and early March, included eBay customers’ name, encrypted password, email address, physical address, phone number and date of birth. However, the database did not contain financial information or other confidential personal information. The company said that the compromised employee log-in credentials were first detected about two weeks ago. Extensive forensics subsequently identified the compromised eBay database, resulting in the company’s announcement today.The company said it has seen no indication of increased fraudulent account activity on eBay. The company also said it has no evidence of unauthorized access or compromises to personal or financial information for PayPal users. PayPal data is stored separately on a secure network, and all PayPal financial information is encrypted.Beginning later today, eBay users will be notified via email, site communications and other marketing channels to change their password. In addition to asking users to change their eBay password, the company said it also is encouraging any eBay user who utilized the same password on other sites to change those passwords, too. The same password should never be used across multiple sites or accounts.Surse: BBC News - eBay makes users change their passwords after hackeBay Inc. To Ask eBay Users To Change Passwords | ebay inc Quote
yo20063 Posted May 21, 2014 Report Posted May 21, 2014 They always say that "there is no evidence of", a method to calm the masses, but they all shit their pants and hoping no full disclosure will happen Quote
