eBay Security Breach - All users recommended to change passwords - Polidicks

[quote]EBay has asked users to change their passwords following a cyberattack that compromised one of its databases. A [URL="http://www.ebayinc.com/in_the_news/story/ebay-inc-ask-ebay-users-change-passwords"]post on its corporate site[/URL] said that cyber-attackers accessed the information after obtaining "a small number of employee log-in credentials", allowing them to access its systems - something it only became aware of a fortnight ago.[/quote] Source - [URL]http://www.bbc.co.uk/news/technology-27503290[/URL]

Did this hit paypal?

[QUOTE=Reshy;44868126]Did this hit paypal?[/QUOTE] [quote]"The database... included eBay customers' name, encrypted password, email address, physical address, phone number and date of birth," it said.[/quote]

It seems like I'm having to change my password every other week now.

I haven't changed my eBay password in a very long time. I probably should do so.

Thanks for letting us know, been using eBay a lot recently so I changed my password and updated my security question right away

I changed my password after the attack, am I safe?

[QUOTE=Reshy;44868126]Did this hit paypal?[/QUOTE] [QUOTE]Although the firm also owns the PayPal money transfer service, it said that the division's data was stored separately, encrypted and that there was no evidence that it had been accessed.[/QUOTE]

I'm not so worried about the password, but the fact that these individuals could have stolen the more sensitive data like my email address and physical address worries me.

Fuck all this changing password nonsense, as long as you have a long enough password consisting of random letters and numbers, and the compromised site stores passwords encrypted, you should be alright. My old school required us to change passwords every few months and you could never set your password as a previous one, was always forgetting my password and it encouraged me to set it as something easy to remember such as qwertyuiop.

[QUOTE=Nasal_Spray;44869650]Fuck all this changing password nonsense, as long as you have a long enough password consisting of random letters and numbers, and the compromised site stores passwords encrypted, you should be alright. My old school required us to change passwords every few months and you could never set your password as a previous one, was always forgetting my password and it encouraged me to set it as something easy to remember such as qwertyuiop.[/QUOTE] You're still fucked if they get your security question or in the extremely unlikely case, manage to crack the encryption.

Good thing I switched to Keepass like a month or two ago.

[QUOTE='[EG] Pepper;44869672']You're still fucked if they get your security question or in the extremely unlikely case, manage to crack the encryption.[/QUOTE] Would I not be better off changing my security question/answer then? At least I'd remember the new answers to the questions. I think I'd be more likely to lose access to my account due to a password change than a cracker unencrypting my password.

I adopted Keepass after Heartbleed because this shit is happening so often.

[QUOTE=nikomo;44869730]Good thing I switched to Keepass like a month or two ago.[/QUOTE] Keep ass?

[url]http://keepass.info/[/url]

Man, hackers are assholes.

I just ordered something from eBay 2 days ago, companies really need to fix these exploits

[QUOTE=Nasal_Spray;44869650]My old school required us to change passwords every few months and you could never set your password as a previous one, was always forgetting my password and it encouraged me to set it as something easy to remember such as qwertyuiop.[/QUOTE] Those kinds of systems are annoying as fuck and I always found they were for useless shit that I didn't care if I had my password stolen. Anything that requires you to change your password every 3 months I usually set to shit like Summer2014, Autumn 2014 etc.

[QUOTE=BowedYapper;44869562]I'm not so worried about the password, but the fact that these individuals could have stolen the more sensitive data like my email address and physical address worries me.[/QUOTE] Blackmarket style, sell it to advertisers or someone more sinister.

For some reason I have always had such a hard time remembering it for eBay. Usually change it when I buy something which is every few months. If only I could go back to using my usual password

I made my first eBay purchase on Monday... and this happens. You've got to be shitting me.

[QUOTE=LoLWaT?;44872351]I remember that. Tried making a usb key and it horribly fucked up locking me out of nearly all of my shit. Great stuff. Also despite having to change passwords isn't it really serious that home addresses, phone numbers, and what not were also uncovered?[/QUOTE] That sort of stuff can be bought by anyone anyway really, electoral register or freedom of information requests or so on it's how telemarketers get your number

[QUOTE=Steve Stump;44872374]Man, hackers are assholes.[/QUOTE] Hack-holes.

pff, I really think it's now wise to have a separate address box to receive packages from the internet tbh. Not sure how expensive that is, but in this day and age with all these ridiculous leaks, I can't trust any company with addresses.

[QUOTE=Bradyns;44873417]I made my first eBay purchase on Monday... and this happens. You've got to be shitting me.[/QUOTE] clearly it's your fault. Shame on you.