2012 I started changing my pay pal login each time I would win an item. A pain in butt but has been keeping hackers from hacking my account . I don't sell on ebay since 2012 . Thanks for post!!! I hope it will help everyone !
Since it happened end if February early March. That's a long time not to have users change passwords. I heard about this on the radio this morning
I hear the black helicopters... Hopefully my Dick Tracy decoder ring will self destruct before the aliens get to it...
I still haven't received any notice from FeeBay. I read about this in the headlines, and I received a message about this thread in my email, but nothing directly from FeeBay. I wonder if the encryption used to protect the passwords in this database was any better than the encryption used on Adobe's passwords that were compromised a while back. The encryption on those didn't last very long... Here's an example of a good service provider: I set up an account for a web site through Dreamhost and shortly after the data breach at Adobe, they sent me an email that read: They cross referenced their user database against the email addresses listed in the compromised Adobe database to advise their users to change their Dreamhost password if it was the same as the one used for Adobe's services. Not that I would ever expect this level of service from FeeBay, but I do expect some direct notification.
Thank you for the heads up. I had not heard..been busy. I have changed passwords, and after reading this thread, I can see that I better have a safer plan. My passwords have been the same for years! Time for change..now I just have to remember the new ones!
good thing is happened many weeks ago so if nothing has happened to your account then they probably didnt get your account. otherwise you would have suffered long before you read this thread
I disagree. Even if they got a tenth of the 150 million active accounts, they could be hacking ten thousand a day, and it would still take them years to get to all of them. Still waiting for my email from eBay.
I was kind of wondering about that too. If they knew this happened weeks ago, why are we finding out about it this week, first of all. But, yes, the repercussions of this could be ongoing for the long-term. Scammers aren't going to go out and log into every single account that was compromised and scam using every one of them. What they're going to do is the people who got the data are going to sell off logins piecemeal to smaller scale scammers who are going to then use their evil ingenuity to invent new ways of scamming people using compromised eBay accounts. Just because nobody got into your account so far, doesn't mean it won't happen next week, next month, or even next year. If the data is out there, it will not go away.
I'm wondering if they are trying to hide information or make it sound better than it actually is so people don't panic and deposit everything from their paypal. Sounds pretty reasonable, especially since they haven't mentioned it yet, and was discovered weeks ago by them.
Thank you Peter for the heads up. My ebay was hacked last year. Since I check my pp balance very often, I caught the thief in the process. I noticed $100's missing as they were in the process of emptying my pp acct. They were buying random expensive items from my ebay account and having them shipped to an address in Canada. The thief changed my "Gift address" to a Canadian one. I didnt even know I had a gift address. I contacted all the sellers and told them not to ship anything to Canada. I then called ebay and paypal as the thief was still buying stuff. They had me change this hidden gift account address, along with my passwords. I'm sure the thief was never caught, but I did get reimbursed rather quickly. Sellers should be more afraid of recieving a returned, not as described, box of rocks from scammer buyers. When this happened to me it tool ebay 6 months to return $500 of mine. I even had a police report because I took the "underweight" returned box to the station to have them open it and document the contents.
The database, (which eBay said was compromised), held eBay customer's names, encrypted passwords, email addresses, physical addresses, phone numbers, and dates of birth. IMO, the encrypted passwords should be the least of our worries.
If anyone steals my desktop, laptop, or backup hard drives they are certainly not going to get anything off of them because they all are encrypted with TrueCrypt. Hard drive encrypted, backup on-site USB hard drive encrypted, and second backup USB hard drive encrypted at off-site location.
Easy there, James Bond. Self-destructs? My idiot cat has walked on the keyboard cover at the password prompt a couple of times - had he hit [return] 4 times I'd be pissed! (no shit - a few years ago he walked on the cordless phone I left on the floor and when I picked it up it had "991" on the screen - how do you explain that one if it had been "911" and "talk"). I too use a password file in Excel - but you have to get past the approximately 15 character password (cannot reveal length for security purposes) to get to it. There's roughly 80 characters on a standard keyboard so that's 3.5184372089e+28 possible combinations. Or about 35,184,372,000,000,000,000,000,000,000 combinations. Not Worried.