Register Guidelines E-Books Today's Posts Search

Go Back   MobileRead Forums > E-Book General > News

Notices

Reply
 
Thread Tools Search this Thread
Old 05-22-2014, 02:56 PM   #16
Manabi
Wizard
Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.
 
Manabi's Avatar
 
Posts: 1,384
Karma: 18484273
Join Date: Apr 2013
Device: Paperwhite, Galaxy S22
Quote:
Originally Posted by bookaho!ic View Post
whats more worrying is they were hacked 3 months ago and only now are we being told!!! i never got an email saw a story on ten oclock news last night
They only discovered the breech two weeks ago, and had to investigate thoroughly to see what was compromised before they could announce anything. That could easily take a week, so they're only about a week late on announcing this.

Even so, they're handling it horribly. I don't think I've ever seen a worse response.

Quote:
Originally Posted by Froide View Post
I so agree with the title, tone, and content of Angus Kidman's Lifehacker Australia article: "eBay Demonstrates How Not To Handle Being Hacked" (May 21, 2014, 6:30 am).
I agree with it too, but you probably wanted this link instead. Looks like you accidentally linked the first article instead.
Manabi is offline   Reply With Quote
Old 05-22-2014, 03:16 PM   #17
Catlady
Grand Sorcerer
Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.Catlady ought to be getting tired of karma fortunes by now.
 
Catlady's Avatar
 
Posts: 7,418
Karma: 52613881
Join Date: Oct 2010
Device: Kindle Fire, Kindle Paperwhite, AGPTek Bluetooth Clip
Quote:
Originally Posted by Manabi View Post
That sounds like someone trying to get into your account. Could have been a simple mistake (got their account name/E-mail address wrong while trying to reset their own), or someone using the stolen data. I'd bet on it being a mistake though, the people with the data wouldn't need to reset it.
I've gotten that same e-mail now two more times. I think it's supposed to be the notification.

Over the past few months I've gotten dozens of "forgotten passwords" e-mails from eBay that are definitely triggered by attempts to get into my account, but these yesterday and today were different. In any case, I did reset the password, but not through the e-mail link.

I was more flummoxed by the text messages, actually--they were just plain odd.
Catlady is offline   Reply With Quote
Advert
Old 05-22-2014, 04:57 PM   #18
Byrdie
Walking Library
Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.Byrdie ought to be getting tired of karma fortunes by now.
 
Posts: 254
Karma: 3869938
Join Date: Sep 2012
Location: Canada
Device: Kobo Libra H20, Kindle Paperwhite 5, 16 gb version
I haven't heard anything yet from ebay, and I buy a lot of old records there, stuff I can't get anywhere else. Guess maybe I'd better change my password.
Byrdie is offline   Reply With Quote
Old 05-22-2014, 05:46 PM   #19
Atunah
Wizard
Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.Atunah ought to be getting tired of karma fortunes by now.
 
Atunah's Avatar
 
Posts: 1,817
Karma: 23400001
Join Date: May 2012
Location: USA
Device: K1/K3/BasicK Voyage/Oasis1/Oasis3
Only way I even heard about this was seeing a scroll bar on CNN yesterday. I changed my password then. Also paypal just in case.
Haven't heard anything from ebay.

If the hackers got the info a while back, they already have it. I can change my password until the cows come home. They already have my address, birthday and all that stuff, right? Not that it isn't a good idea to change passwords, but still.

I just dealt with a hack this week when someone hacked into my Walmart account and happily ordered cell phones that also had phone cards attached that get emailed. They emailed the cards to their email and I got stuck dealing with 2 phones shipped to my address. All they wanted where the email codes for the minutes. I finally got that straightened out with cancelled CC and refusing delivery of the stupid phones. WalMart was no help of course.

I feel sometimes like its playing russian roulette anytime I do anything online that requires my address, payment. Since pretty much everything is done online now, I don't have much choice.
Atunah is offline   Reply With Quote
Old 05-22-2014, 05:58 PM   #20
Manabi
Wizard
Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.
 
Manabi's Avatar
 
Posts: 1,384
Karma: 18484273
Join Date: Apr 2013
Device: Paperwhite, Galaxy S22
Quote:
Originally Posted by Catlady View Post
I've gotten that same e-mail now two more times. I think it's supposed to be the notification.
I doubt it is, so far very few people have gotten any e-mail at all, so getting four is really suspicious. The good news is that even if it IS someone trying to get into your account, they're failing.

Quote:
Originally Posted by Atunah View Post
If the hackers got the info a while back, they already have it. I can change my password until the cows come home. They already have my address, birthday and all that stuff, right? Not that it isn't a good idea to change passwords, but still.
Well you definitely want to change the password, logging into a compromised account makes scamming sellers quite easy and eBay's system for dealing with those kinds of problems isn't exactly quick.

I don't worry too much about name/address/birthday, that info isn't hard to find for any of us anyway.
Manabi is offline   Reply With Quote
Advert
Old 05-22-2014, 11:14 PM   #21
rkomar
Wizard
rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.rkomar ought to be getting tired of karma fortunes by now.
 
Posts: 3,055
Karma: 18821071
Join Date: Oct 2010
Location: Sudbury, ON, Canada
Device: PRS-505, PB 902, PRS-T1, PB 623, PB 840, PB 633
Quote:
Originally Posted by Byrdie View Post
I haven't heard anything yet from ebay, and I buy a lot of old records there, stuff I can't get anywhere else. Guess maybe I'd better change my password.
It won't hurt to change it, even if it wasn't compromised. Why take chances? So, I think your instinct is right on this.
rkomar is offline   Reply With Quote
Old 05-23-2014, 12:20 AM   #22
rcentros
eReader Wrangler
rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.rcentros ought to be getting tired of karma fortunes by now.
 
rcentros's Avatar
 
Posts: 7,894
Karma: 52566355
Join Date: Mar 2013
Location: Boise, ID
Device: PB HD3, GL3, Voyage, Clara HD
Quote:
Originally Posted by Lynx-lynx View Post
However, it said that changing the passwords was "best practice and will help enhance security for eBay users".
I've been a registered user on eBay since March, 1997 (when you could still browse everything in a specific category). I actually bought items there before registering as, originally, you didn't have to register to buy. Seventeen plus years (I'm getting old). This is the first time I've ever changed my password. I figured I've had a long run, why test fate any further.
rcentros is offline   Reply With Quote
Old 05-23-2014, 12:00 PM   #23
jersysman
Wizard
jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.jersysman ought to be getting tired of karma fortunes by now.
 
jersysman's Avatar
 
Posts: 1,747
Karma: 3761220
Join Date: Mar 2011
Location: Pennsylvania
Device: T1 Red, Kindle Fire, Kindle PW, PW2, Nook HD+, Kobo Mini, Aura HD
It's been so long since I used eBay, I don't even remember my password.
jersysman is offline   Reply With Quote
Old 05-23-2014, 01:02 PM   #24
49Kat
Fanatic
49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.49Kat ought to be getting tired of karma fortunes by now.
 
49Kat's Avatar
 
Posts: 580
Karma: 1309104
Join Date: Oct 2011
Location: BC,Canada/NV, USA
Device: iPad 9th Gen, iPhone 11, Paperwhite 10th Gen.
Wow...I didn't receive any notification from eBay, but I went there anyway and got the password reset. I also removed the link to my Paypal account. I haven't used eBay in years, but not quite ready to close the account yet either. And the Paypal account is now further locked down with a security key. I wish eBay would do the key thing as well without having to link to Paypal.

Last edited by 49Kat; 05-23-2014 at 01:06 PM.
49Kat is offline   Reply With Quote
Old 05-23-2014, 01:04 PM   #25
calvin-c
Guru
calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.calvin-c ought to be getting tired of karma fortunes by now.
 
Posts: 787
Karma: 1575310
Join Date: Jul 2009
Device: Moon+ Pro
Quote:
Originally Posted by Manabi View Post
They only discovered the breech two weeks ago, and had to investigate thoroughly to see what was compromised before they could announce anything. That could easily take a week, so they're only about a week late on announcing this.

Even so, they're handling it horribly. I don't think I've ever seen a worse response.
Yes, and no. Even though the 'hack' came from obtaining authorized user logins they should still have discovered it sooner-if they were really concerned about security. I worked computer security, I know. Standard auditing would have logged even authorized user access to sensitive data. Unless the 'authorized user' was a DBA-and if that's the case then the DBA should probably be fired-then the bulk copying should have triggered an alarm. (A DBA whose login is stolen is like a security guard letting his keys be copied.)

I went to eBay as soon as I read the story-and couldn't find a 'straight-up' password change function. I did find one, eventually, by following a question about what to do if I find that somebody else has used my account. Really-standard security practices are to change passwords frequently. So why would a company that's really concerned about security hide that function?

I guess that tells everybody how concerned eBay really is about security. (FWIW I use eBay maybe twice/year so I don't remember my login but I do write it down. That used to be a no-no but these days more 'hacks' come online from easily guessed passwords than from people physically accessing your office. Besides I keep my written-down passwords in a lockbox.)
calvin-c is offline   Reply With Quote
Old 05-23-2014, 01:57 PM   #26
Froide
Wizard
Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.Froide ought to be getting tired of karma fortunes by now.
 
Froide's Avatar
 
Posts: 1,898
Karma: 9851695
Join Date: Mar 2012
Location: Noo Yawk
Device: Samsung Galaxy and Windows devices. RIP: Palm & Nook devices.
Quote:
Originally Posted by Manabi View Post
They only discovered the breech two weeks ago, and had to investigate thoroughly to see what was compromised before they could announce anything. That could easily take a week, so they're only about a week late on announcing this.

Even so, they're handling it horribly. I don't think I've ever seen a worse response.


I agree with it too, but you probably wanted this link instead. Looks like you accidentally linked the first article instead.
Thank you for the heads-up, Manabi. I've corrected the link.

...Still awaiting my email from eBay. Tick tock...

EBay's response to this mess has been egregious. I hope they'll comply with legislators' requests that eBay provide free credit monitoring services to affected users. It's the least eBay could do; their breach is larger than those of Target, disclosed last December, and of TJ Maxx/Marshall, in 2006.

Last edited by Froide; 05-23-2014 at 02:00 PM.
Froide is offline   Reply With Quote
Old 05-23-2014, 02:45 PM   #27
frahse
occasional author
frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.frahse ought to be getting tired of karma fortunes by now.
 
frahse's Avatar
 
Posts: 2,315
Karma: 2064403292
Join Date: Sep 2011
Location: Wandering God's glorious hills, valleys and plains.
Device: A Franklin BI (before Internet) was the first. I still have it.
Quote:
Originally Posted by BenG View Post
Thanks.
frahse is offline   Reply With Quote
Old 05-23-2014, 09:18 PM   #28
Manabi
Wizard
Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.Manabi ought to be getting tired of karma fortunes by now.
 
Manabi's Avatar
 
Posts: 1,384
Karma: 18484273
Join Date: Apr 2013
Device: Paperwhite, Galaxy S22
Quote:
Originally Posted by calvin-c View Post
Yes, and no. Even though the 'hack' came from obtaining authorized user logins they should still have discovered it sooner-if they were really concerned about security. I worked computer security, I know. Standard auditing would have logged even authorized user access to sensitive data. Unless the 'authorized user' was a DBA-and if that's the case then the DBA should probably be fired-then the bulk copying should have triggered an alarm. (A DBA whose login is stolen is like a security guard letting his keys be copied.)
I wasn't commenting on whether they should have discovered it sooner (they should have), just that the reality is they only discovered it two weeks ago so it's unfair to say they waited months to report the breech it was discovered.

Quote:
Originally Posted by calvin-c View Post
I went to eBay as soon as I read the story-and couldn't find a 'straight-up' password change function. I did find one, eventually, by following a question about what to do if I find that somebody else has used my account. Really-standard security practices are to change passwords frequently. So why would a company that's really concerned about security hide that function?
That was my experience too, I have never had so much trouble finding where to change a password. It very much felt like they didn't want anyone to do so.

Quote:
Originally Posted by calvin-c View Post
I guess that tells everybody how concerned eBay really is about security. (FWIW I use eBay maybe twice/year so I don't remember my login but I do write it down. That used to be a no-no but these days more 'hacks' come online from easily guessed passwords than from people physically accessing your office. Besides I keep my written-down passwords in a lockbox.)
I use a password safes myself. on two levels. I use LastPass for ease of use for stuff that's not terribly important (forums and such) and KeePass without a browser plugin for stuff that's important (banks, credit cards, etc.) Almost all of my passwords are totally random ones that are highly unlikely to be bruteforced anytime in the near future.
Manabi is offline   Reply With Quote
Old 05-24-2014, 12:19 AM   #29
WT Sharpe
Bah, humbug!
WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.WT Sharpe ought to be getting tired of karma fortunes by now.
 
WT Sharpe's Avatar
 
Posts: 39,072
Karma: 157049943
Join Date: Jun 2009
Location: Chesapeake, VA, USA
Device: Kindle Oasis, iPad Pro, & a Samsung Galaxy S9.
Well, this just sucks. These breeches of security are getting more and more commonplace, and it's not just eBay/PayPal. If a new system for guaranteeing identity isn't devised soon, we'll all find ourselves victims of identity theft.
WT Sharpe is offline   Reply With Quote
Old 05-25-2014, 03:27 PM   #30
HarryT
eBook Enthusiast
HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.HarryT ought to be getting tired of karma fortunes by now.
 
HarryT's Avatar
 
Posts: 85,549
Karma: 93383099
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
I got an email about it from eBay today. I actually changed my password last week, of course.
HarryT is offline   Reply With Quote
Reply


Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Hacks Can the K4 NT be hacked at all? cliffsloane Amazon Kindle 5 11-04-2011 02:31 PM
Apple.com Hacked? kjk News 4 10-04-2011 10:50 PM
Hacked Account BenJammin2 Nook Color & Nook Tablet 32 07-06-2011 02:47 PM
K3 hacked Tiersten Amazon Kindle 57 09-23-2010 09:32 PM
PRS-600 Really Hacked at ebookstore Coreman Sony Reader 5 05-31-2010 11:33 PM


All times are GMT -4. The time now is 04:44 AM.


MobileRead.com is a privately owned, operated and funded community.