Quantcast

Tuesday, July 29, 2014         

 Print   Email   Comment | View 3 Comments   Most Popular   Save   Post   Retweet

eBay asks users to change password after breach

By Associated Press

POSTED:
LAST UPDATED: 11:44 a.m. HST, May 21, 2014


SAN JOSE, Calif. >> E-commerce site eBay is asking users to change their passwords after a cyberattack compromised a company database containing customers' names, encrypted passwords, email addresses, physical addresses, phone numbers and dates of birth.

The company said Wednesday that there is no evidence that any financial or credit card information was stolen and no sign that the breach has resulted in unauthorized activity for its 145 million active users.

EBay says its investigation is active and it can't comment on the specific number of accounts affected, but says the number could be large.

Cyberattackers stole a small number of employee log-in credentials that gave access to eBay's corporate network, the company said. The San Jose, California-based company is working with law enforcement to investigate the attack.

The database was hacked sometime between late February and early March, but compromised employee log-in credentials were first detected two weeks ago.

EBay owns electronic payment service PayPal, but eBay says there is no evidence PayPal information was hacked, since that data is stored separately.

The attack follows several other high-profile data security incidents, including a massive breach at Target stores and the recent discovery of the "Heartbleed." computer security flaw. Heartbleed is a point of weakness in a key piece of security technology used by more than 500,000 websites that had been exposing online passwords and other sensitive data to potential theft for more than two years.

And during Target's data breach last year, hackers stole about 40 million debit and credit card numbers and personal information for 70 million people.

Shares of eBay Inc. fell 8 cents to $51.88 in Wednesday's trading.







 Print   Email   Comment | View 3 Comments   Most Popular   Save   Post   Retweet

COMMENTS
(3)
You must be subscribed to participate in discussions
By participating in online discussions you acknowledge that you have agreed to the TERMS OF SERVICE. An insightful discussion of ideas and viewpoints is encouraged, but comments must be civil and in good taste, with no personal attacks. Because only subscribers are allowed to comment, we have your personal information and are able to contact you. If your comments are inappropriate, you may receive a warning, and if you persist with such comments you may be banned from posting. To report comments that you believe do not follow our guidelines, email commentfeedback@staradvertiser.com.
Leave a comment

Please login to leave a comment.
fstop wrote:
I haven't received any notice. There is no notice on their website either.
on May 21,2014 | 07:52AM
4watitsworth wrote:
Why are they keeping passwords? They should have members reset their passwords if forgotten. With so much hacking taking place, it's getting scarey to do anything on the internet.
on May 21,2014 | 10:16AM
Sunny wrote:
How are they going to know you are logging in without knowing your password! Duh!
on May 21,2014 | 12:43PM
IN OTHER NEWS
Breaking News
Blogs
Political Radar
`My side’

Political Radar
‘He reminds me of me’

Bionic Reporter
Needing a new knee

Warrior Beat
Monday musings

Small Talk
Burning money

Political Radar
On policy

Warrior Beat
Apple fallout