FierceCIO
|
|
eBay
has suffered a massive security breach, and is urging its users to
change their passwords as a precautionary practice. This much emerged
after the company sent out emails to its users informing them of the
cyber-attack.
eBay admits to massive security breach in Feb, March
eBay has suffered a massive security breach, and is urging its
users to change their passwords as a precautionary practice. This much
emerged after the company sent out emails to its users informing them of
the cyber-attack. The company also published a post that offered a little more information of what exactly happened.
According to the company, hackers accessed internal databases between late February and early March after obtaining a "small number of" employee log-in credentials. These were subsequently used to infiltrate the corporate network and eventually culminated in the data breach.
It is understood that the hackers successfully accessed and copied data including names, dates of birth, phone numbers, physical addresses and email addresses from internal servers. In addition, "encrypted" passwords--probably hashed so that they are not in plain text--were also stolen. eBay says that credit card numbers and other financial records were not touched, as they were stored separately.
Sign up for our FREE newsletter for more news like this sent to your inbox!
The eBay breach is noteworthy because it has 128 million active
users, and the stolen data could be leveraged for social engineering
purposes or as part of identity theft scams. In the meantime, users who
use the same password across multiple sites should change their
passwords, and seriously consider using different passwords for
different web services.
For more:
- check out this article at Forbes
- check out this article at The Register
Related Articles:
Target hackers exploited stolen vendor credentials
Custom malware at heart of Target POS breach
Target CIO resigns over security breach
end quote from:
According to the company, hackers accessed internal databases between late February and early March after obtaining a "small number of" employee log-in credentials. These were subsequently used to infiltrate the corporate network and eventually culminated in the data breach.
It is understood that the hackers successfully accessed and copied data including names, dates of birth, phone numbers, physical addresses and email addresses from internal servers. In addition, "encrypted" passwords--probably hashed so that they are not in plain text--were also stolen. eBay says that credit card numbers and other financial records were not touched, as they were stored separately.
Webinar: Closing the Deal with Mobile Apps for Manufacturers
This webinar will explore how the benefits of real-time information access for the sales and distribution channel, improved inventory management and resource allocation through instant visibility into the supply chain, and methods for providing secure mobile access to business applications across the enterprise. Register Today! Register Now!For more:
- check out this article at Forbes
- check out this article at The Register
Related Articles:
Target hackers exploited stolen vendor credentials
Custom malware at heart of Target POS breach
Target CIO resigns over security breach
end quote from:
No comments:
Post a Comment