Ebay Hacked
I just got a call from a friend and was told that Ebay has been hacked. It is suggested that those who use it change their password.
Forum Discussion
Finally received an email tonight about changing your account password. I did see the notice on EBAY's home page and decided to change it a few days ago. More so as details emerge that the personal info of "every" of its 233 million EBAY users worldwide were hacked(source:thedailybeast.com). So why are we getting a notice about this now, and not earlier?
Worse, there is enough personal info in the hack that could be used for identity theft, including those common security questions for resetting passwords? These were apparently not encrypted on EBAY servers? Whereas PAYPAL info was?
And like the Target breach, it appears the hackers gained access to EBAY servers via stolen credentials? Which wouldn't surprise me if an employee opened some type of attachment containing a malicious keylogger, and gave permission for it to run?
You can have up to date security, but can have it quickly fall apart from the weakest link of not using some commonsense?
Worse, there is enough personal info in the hack that could be used for identity theft, including those common security questions for resetting passwords? These were apparently not encrypted on EBAY servers? Whereas PAYPAL info was?
And like the Target breach, it appears the hackers gained access to EBAY servers via stolen credentials? Which wouldn't surprise me if an employee opened some type of attachment containing a malicious keylogger, and gave permission for it to run?
You can have up to date security, but can have it quickly fall apart from the weakest link of not using some commonsense?
