Changing eBay password isn’t enough


In a May 21 blog post, online auction giant eBay acknowledged a cyberattack that compromised a database containing encrypted passwords and other non-financial data like user addresses and birthdates. As a result, eBay is asking its users to change their passwords. However, consumers will want to take extra steps to protect their personal information and other online accounts.

eBay detected unauthorized access into its database in February and March of this year.  The company said at the time of public disclosure of the breach: “We have no evidence of the compromise resulting in unauthorized activity for eBay users, and no evidence of any unauthorized access to financial or credit card information, which is stored separately in encrypted formats. However, changing passwords is a best practice and will help enhance security for eBay users.”

What eBay failed to mention is the importance of changing passwords in other places, as well. If fraudsters possess your login information for eBay, and you use the same information to log into online banking and social media, it isn’t difficult for them to hack into what may be more vulnerable accounts.

continue reading »