This is all over the net, twitter and the press, shame eBay couldn`t inform its users first. Its advising changes to passwords http://www.cnet.com/uk/news/ebay-hacked-requests-all-users-change-passwords/ http://www.ecommercebytes.com/C/blog/blog.pl?/pl/2014/5/1400674908.html
Not sure whether the subject is accurate - eBay says that PayPal is not affected. But of course, if you happen to use the same password for both sites, it makes sense to change it "here" and "there" ... Christian
Ya know... for FIFTEEN YEARS, I had my real full name as my eBay user ID, and a spectacularly weak (five lower-case characters) password. Never a moment's trouble. I finally couldn't ignore the stupidity of it, and changed both a short while back (before this news hit, but apparently after the actual attack). I've been seeing a pattern of bogus auctions for lots of three to six MS-70 gold moderns (Buffaloes or AGEs) over the last month or two. Always on an account with a long history (and good FB) of selling cheaper stuff, that had been inactive for a year or more; often with one or two recent positive FBs for single gold coins, presumably part of the fraud. I wonder if this is where they were getting the credentials to hijack the accounts.
I do it for all of my accounts that have access to cash or personal identification. I use passwords with the maximum number of characters each site allows. It only takes 10 or 15 minutes to change them all. I use a password generator and storage program with no access to or from the web. I use passwords with the maximum number of characters each site allows. I only have to remember two passwords, one to access my computer a another to access the password program. I change those two on a monthly basis, also.
I've never had anybody break into any of my online accounts, but I have had a burglar steal every laptop in our house. Fortunately, I had my "main" laptop with me at work, and my wife had complete and up-to-date backups. I do hope you have a contingency plan in case something happens to the basket that holds all your eggs, er, the computer that holds all your passwords...
I do. I constantly back everything up to an external hard drive that is very well hidden. And if my computer is ever stolen, I don't think anyone can ever get into it. 4 shots at the password. If you still haven't gotten it after 4 tries, the hard drive self destructs.
That sounds secure, but I have to say that 4 tries would be too low a threshold for me. It's a bad day when I need four tries to get in, but not at all unheard of -- and the tension of knowing that "the next try may be my last" does nothing to improve my accuracy.
Changing passwords is fine but the fact that they stole personal info like names, addresses, & DOBs is more worrisome. Changing a password is not going to help with that. I hope Ebay steps up & offers identity protection/credit monitoring for everyone who was affected!!
I keep the two passwords I have to remember written down and stored safely away. My wife knows where they are if the need (my death) should arise.