Ebay hacked - passwords stolen.

tlgerdes (Trevor) · #1 22-05-2014, 07:59 AM

http://www.itnews.com.au/News/386139...ily_newsletter

Login and change your Ebay passwords.

OzStarGazer · #2 22-05-2014, 08:10 AM

Done. (Thanks for the link.)

Octane (Humayun) · #3 22-05-2014, 08:34 AM

Thanks, Trevor. Have updated my details and alerted family. H

lacad01 (Adam) · #4 22-05-2014, 08:38 AM

Bother! thanks for the info

Pinwheel (Doug) · #5 22-05-2014, 09:30 AM

Haven't changed my ebay password for 10 years. Just done it now for the first time.

expon (Jas) · #6 22-05-2014, 10:05 AM

Probably not much point as now they have enough personal details to pretty much get access to anything of yours they want. Tie that in with every other critical information leak of the last few years (Sony, adobe, heartbleed) and there is enough compromised information out there that secret questions won't keep u safe anymore.

Starless (Brian) · #7 22-05-2014, 10:30 AM

Many thanks!!!

gary · #8 22-05-2014, 10:38 AM

http://pages.ebay.com/help/account/change-password.html

stephenb (Stephen) · #9 22-05-2014, 11:23 AM

No alerts or messages from eBay? Slack

astroron (Ron) · #10 22-05-2014, 12:31 PM

Quote:

Originally Posted by gary

http://pages.ebay.com/help/account/change-password.html

Thanks Gary.

Done

Cheers

Pinwheel (Doug) · #11 22-05-2014, 12:47 PM

Quote:

Originally Posted by expon

Probably not much point as now they have enough personal details to pretty much get access to anything of yours they want. Tie that in with every other critical information leak of the last few years (Sony, adobe, heartbleed) and there is enough compromised information out there that secret questions won't keep u safe anymore.

I don't use simplistic prompts in my passwords. I'm a lot more savey than that, and I don't use things like 1234, password or qwerty either....

AstralTraveller (David) · #12 22-05-2014, 01:21 PM

Quote:

Originally Posted by Pinwheel

I don't use simplistic prompts in my passwords. I'm a lot more savey than that, and I don't use things like 1234, password or qwerty either....

I use p@55w0rd They'll never guess that!

It seems the information was lost months ago, so I suspect any damage has been done - but of course I'll change anyway.

Astro_Bot · #13 22-05-2014, 01:54 PM

Thanks for the tip.

At least I never use the same password twice (for anything important at least).

I'm disappointed that there's no e-mail from eBay alerting users to this problem. They're certainly happy enough to send marketing e-mails.

mithrandir (Andrew) · #14 22-05-2014, 02:51 PM

Quote:

Originally Posted by Astro_Bot

I'm disappointed that there's no e-mail from eBay alerting users to this problem. They're certainly happy enough to send marketing e-mails.

Emailing people is counterproductive. Especially so if they include a link to the password change page. It takes more intelligence than the average user to tell the difference between a real email and a phish.

Better to expire passwords and make people change them at next logon with a two factor process.

And store passwords as hashes rather than encrypted which is what e-bay did. It means they can't tell you what your password is if you forget it, but is far more secure.

Astro_Bot · #15 22-05-2014, 02:55 PM

I wouldn't expect a link in the e-mail. But my disappointment stands. Many people don't read or watch news, and I wouldn't have known if not for this thread.

Pinwheel (Doug) · #16 22-05-2014, 03:37 PM

Quote:

Originally Posted by Astro_Bot

I wouldn't expect a link in the e-mail. But my disappointment stands. Many people don't read or watch news, and I wouldn't have known if not for this thread.

It's been on ABC 24 all day so far..

Astro_Bot · #17 22-05-2014, 03:46 PM

Quote:

Originally Posted by Pinwheel

It's been on ABC 24 all day so far..

Sigh.

Quote:

Originally Posted by Astro_Bot

Many people don't read or watch news

Pinwheel (Doug) · #18 22-05-2014, 04:08 PM

Quote:

Originally Posted by Astro_Bot

Sigh.

I was well aware of your comment Astro Boy, I was just adding a comment that it's now on the news..

BlackWidow (Mardy) · #19 22-05-2014, 04:30 PM

I have more worry about EBay as a Company to be honest.. The most untrusting Business I have ever had dealings with. As a seller for 14 years I have had my fair share of troubles with E-Bay and thier policy...

Its most likley that the breach happened within thier own ranks.

ianB (Ian) · #20 22-05-2014, 04:42 PM

I just changed my password and ebay had a box saying please change your password, they should have given me that message earlier.