ebay was hacked!

[TamTom]

I have just red in online newspaper that, ebay was hacked by end of february/early march! The hackers could gain Access to the ebay database where user data is stored. The hackers obviousely could grap lots of user data. eBay recomends to Change user Passwords.

I am very upset that ebay did not inform us ebay users in time! Instead we must read from online newspapers two month later!

[TWINSET]

Yup, it's been on the radio this evening

Apparently, the hackers couldn't access passwords, only trivial stuff like Name, Address, Date of Birth etc - the kind of stuff that's of no use to anyone so pointless encrypting it

[TamTom]

Well, even they got only personal data lik name, address etc. That is very valuable information which the thiefs are going to sell to soemeone.

[Flerbizky]

Well, even they got only personal data lik name, address etc. That is very valuable information which the thiefs are going to sell to soemeone.

You mean info they couldn't get from the yellow pages?

[TamTom]

You mean info they couldn't get from the yellow pages?

Would you as spam company collect a million address, names, telephone number and e-mail addresses from yellow pages or phone book? No. And I personally am not registered either in yellow pages or anywhere else but ebay and other databases where I buy from and officials. I don't want my personal data beeing exposed, sold or stored by unauthorised persons or companies. Our personal data must be protected from unauthorised access and abuse because. Personal data is a highly protectable information, now and in future. Privacy is be something we will have to fight for. I don't take personal data loss easy and no one else should do either because sooner or later it will be used against us.

[Grastens]

You mean it is not already? I figured all those RC spam e-mails were from my online dealings with specific stores, who then sold my information onto other companies to mail to; magazines allegedly work the same way with subscriptions. Privacy acts almost everywhere need to be re-written because they were unprepared for the Internet...

Really: who owns your information to begin with? We are in even less control of it than we think.

Yes; this situation is an uncomfortable one, but at the same time massive measures need to be taken to ensure the kind of security that is actually desired online. Thankfully, it seems less-sensitive information was exposed this time around.

[TWINSET]

Your name, date of birth, address etc. are not 'less-sensitive' - they're the basis for credit applications etc.

My eBay details have never been my own actual details, I've always used my work address and a random year for my birth on any site that's not a bank or credit card site.

Changing details won't make a lot of difference now for eBay, but it might be worth seeing who else has your 'real' details and change them.

[danb1974]

Would you as spam company collect a million address, names, telephone number and e-mail addresses from yellow pages or phone book? No.

Actually yes, spam companies collect information from wherever they can, yellow/white pages and phonebooks in electronic format (nope encryption doesn't help, if the interface does not allow listing only searching you just crack the program), any kind of web sites that have public name and email lists. I suspect spammers also try common format email addresses (like combinations of fistname lastname year of birth @ gmail yahoo whatever) and whatever is not rejected as invalid email address is considered valid. Not to mention viruses that just grab your contact list from your computer.

[backtomyroots]

well, changed my password anyway .

now, to remember it .

[njmlondon]

It really surprises me how long they took to tell us.

I am also a bit concerned because I am running quite a few auctions at the moment. I wonder if some users are put off at the moment and whether my end price could be negatively impacted on?

It seems wrong for them to charge their whopping fees whilst this is ongoing.

[matman]

well, changed my password anyway .

now, to remember it .

<< Tell us , So we can remind you :LOL: ...

[matman]

I have had an Email from Ebay to say i should look at changing my password .

No links on Email to change the password << that is good as it is from Ebay

& you should not need a link .. Mind you it is only ebay.com.au that has requested it &

not ebay.com .

Has anyone else got one yet ???

[lupogtiboy]

I changed mine yesterday as I had a message from ebay on my homepage suggested to. I have noticed that I'm getting a lot of crappy email messages from PPI and health companies now (laservision etc...)

[matman]

Yer !! i see it all over Ebay to change your password .

[TamTom]

Actually yes, spam companies collect information from wherever they can, yellow/white pages and phonebooks in electronic format (nope encryption doesn't help, if the interface does not allow listing only searching you just crack the program), any kind of web sites that have public name and email lists. I suspect spammers also try common format email addresses (like combinations of fistname lastname year of birth @ gmail yahoo whatever) and whatever is not rejected as invalid email address is considered valid. Not to mention viruses that just grab your contact list from your computer.

Some do - correct but. Then this company is registered with Yellow pages and most do not want to be registered as a buyer. So majority prefer to buy from dark sources because no trace leads to them. You are absolutely right with email address combinations. There are programs doing just this. And simple to determine whether the address is valid or not. All those where the sending mail server does not get a drop/refuse message are hits because mailboxes existing and are inserted int database which again can be resold as potential mail-recipients. Interestingly the amount of spam mails I received the last couple of week has been increas a big number.

Also what I hate is, when people backup their phone address books into google cloud or apple cloud service! Because even I take care to limit my personal data (name, address telephone number) to selected places in the web only, those persons expose my data to google and apple even I do not want to. Google and Facebook are known as one of the biggest storage and reseller of personal information. The face scanning software that google and facebook are using are very frightning. They can easely match faces of uploaded pictures with names, address, interest or known other people and store this data. This is a very dangerouse direction and so far there is nobody who has enough power to stop that.

A couple of weeks ago I had the chance (well, better said, I had to do it) to test the first google glass here in Austria. And what I found was even more frightning then just the storage of peronal data of google and facebook. Beside that the google glass is pain in the **** to wear and it is far from what we can call usuable (it is still a prototype), the purpose of the google glass is unhidden visible. To get human drones that spy for google and other forces behind them. You need a WLAN (notebook or Hotspot of your smart phone) to activate the glass. You must access a google website on your device, then enter your SSID AND your network password!!! (into the google website), then the website generates a QR code whicht you picture with google glass and then it configurates into your WLAN. Means google say thank you because with the gps sender of the glass google immedately locates you and you were so kind to give them access to your WLAN. So they even have to to no effort to invade your network and have easy game to access all your PCs, NBs, Servers and data. They can easely set a backdoor and you never check it.

Also you have no control when someone is watching and record through your google glass camera. You even do not realise it. There is no other purpose than to spy yourself and other people and places where you are around. I really don't understand why such a product even is allowed to produce.

[WillyChang]

They need an army of googleglass to reach where their google camera cars can't, like inside buildings etc.

What's amazing is that they charge you $1500 to get conscripted! hahaha Uncle Sam is impressed

[TamTom]

They need an army of googleglass to reach where their google camera cars can't, like inside buildings etc.

What's amazing is that they charge you $1500 to get conscripted! hahaha Uncle Sam is impressed

Well, as far as I have heared, in the US there is in spite of the high Price a hype for the google glass. I can't verify it that is true or not but, I can imagine it is true. to many People on our globe are silly enough to expose all their privacy and think it is a good idea to let all the electrnics and companies such as Google, Facebook etc. take over our life. Because they are so kind and Support us with all their goodies that makes our life so easy.... **** that's a lie.

And due to the fact that, hundret of thousand People all over the globe stand lined up at the shop and wait hours to pay euro 600 for a **** iPhone5 at launch, I don't see a Problem that this will happen with the google glass as well. Those People want always be first in a hype about electronics and they don't use their mind either. So there will be hundred of thousands that will wear that glass and evolutions will follow very quickly so the number of drones will increase as they been sold daily. Ans some years later, Google glass will be Business as usual and the next step of privacy Intrusion is on the way.

Don't Forget, it is better to have moving drones rather than static cameras that have to be hacked in individually. Google glass is most insecure device you can imagine. You have absolute no control and you give Google your SSID and Network Password. So they actually don't even Need to hack something. You invite them.

[WillyChang]

Don't Forget, it is better to have moving drones rather than static cameras that have to be hacked in individually. Google glass is most insecure device you can imagine. You have absolute no control and you give Google your SSID and Network Password. So they actually don't even Need to hack something. You invite them.

I gots 2 words to scare you further... NETWORKED DASHCAMS

[TamTom]

I gots 2 words to scare you further... NETWORKED DASHCAMS

I know they are existing and it does not scare me in general. What scares me is, how easy it is to implement a system of observation to private persons. The point is, I am not a hysterical person but I'm IT-Specialist and I often have deep insight what is possible today and often get security information what is going on today on the network. So when I use my technical mind and put facts together, I know the direction where the system is steering. Well, that makes me scared. Today many clueless or ignorant people are laughing and say this is conspiracy or something. But you know, hystory is repeating...

[WillyChang]

Privacy is only a figment of one's imagination I'm afraid.

BiTD we would hang around various online forums & use cryptic IDs.

Current trend to login to everything using Goggle or BookFace ID

is even scarier, given the opportunity for coy to collate personal data.

(I find they're always trying to crossreference... eg name to phone# to address hmmm...!)

[bromvw]

This is exactly why i have a separate bank account set up just for ebay transactions . I only ever transfer funds into it to cover a ebay purchase . That way even in the event of a hack they will not obtain my main account details and if they are very lucky a minimum amount of funds .

Simple but effective

[Crash Cramer]

You know, this breach sounds like it is timed very near the Heartbleed incident that had some major players info being hacked because of security software bugs(I THINK, don't quote me, I am ignorant on most things). I was told about it first from my brother, then my bank weighed in on it about a week later suggesting I change my password, now I have three new passwords that I pray I can remember so I don't get locked out of ebay, google and my bank, YEA, the older I get the worse my memory, so unless they let me used my old password of PASSWORD, I am screwed for remembering my new password, maybe that should be NEW PASSWORD.

I take ANY information breach personally, and if I were a bit paranoid, I could think that name and address would lead anyone with the data to come over to my house after I bid and win an auction and scoop all my Tamiya gooodies off the front doorstep and I would have nothing to show for it but a bunch of Paypal claims. BTW, I wonder when Paypal will come tell us they have had a breach since they and Ebay have been very close in the past????? HMMMM

[TamTom]

Not only Close Crash Cramer, paypal belongs to ebay. The person you meet at the door step is not the problem. The problem is sitting in our governments and big pharma, military, agro, food and car manufacturer lobbies. Oh and not to forget, banks, exchange and rating argentures.

[Flerbizky]

You know, this breach sounds like it is timed very near the Heartbleed incident that had some major players info being hacked because of security software bugs(I THINK, don't quote me, I am ignorant on most things). I was told about it first from my brother, then my bank weighed in on it about a week later suggesting I change my password, now I have three new passwords that I pray I can remember so I don't get locked out of ebay, google and my bank, YEA, the older I get the worse my memory, so unless they let me used my old password of PASSWORD, I am screwed for remembering my new password, maybe that should be NEW PASSWORD.

https://lastpass.com/