Millions of eBay users have been advised to change their passwords after the ecommerce giant announced yesterday that its website had been compromised.
Nonetheless, eBay added that there was no evidence that the financial information of its users were also at risk.
“Recently, our company discovered a cyberattack on our corporate information network. This attack compromised a database containing eBay user passwords,” the company said on its website.
“We have no evidence that your financial information was accessed or compromised and your password was encrypted. However, to protect the security and privacy of our customers, we’re asking all eBay users to reset their passwords.”
In a separate blog post, eBay said that the cyberattack targeted its employee log-in credentials and that it was “first detected about two weeks ago”.
The American company added that its subsidiary, Paypal, is “stored separately on a secure network, and all PayPal financial information is encrypted”.
A total of 145 millions eBay users have been advised to change their passwords. In its Singapore website (ebay.com.sg), a sticky banner with the password change notification is also shown on the home page.
eBay is roping in law enforcement and security experts to assist in investigations.