geekhack
geekhack Community => Off Topic => Topic started by: Findecanor on Wed, 21 May 2014, 09:38:11
-
eBay has announced today that some of its employee accounts have been cracked, and its user database has been compromised. Emails will go out today to members to change their passwords.
They claim that no financial information has been accessed, and no (more than normal) fraudulent activity has been detected.
Source:
http://www.ebayinc.com/in_the_news/story/ebay-inc-ask-ebay-users-change-passwords
-
Why would I trust eBay inc .com? EBay doesn't say anything. They didn't send any emails.
-
user@gorcrow:~/www/linux/themes$ whois ebayinc.com
Whois Server Version 2.0
Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.
Domain Name: EBAYINC.COM
Registrar: MARKMONITOR INC.
Whois Server: whois.markmonitor.com
Referral URL: http://www.markmonitor.com
Name Server: NS1.P47.DYNECT.NET
Name Server: NS2.P47.DYNECT.NET
Name Server: SJC-DNS1.EBAYDNS.COM
Name Server: SJC-DNS2.EBAYDNS.COM
Name Server: SMF-DNS1.EBAYDNS.COM
Name Server: SMF-DNS2.EBAYDNS.COM
Status: clientDeleteProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 15-apr-2014
Creation Date: 16-may-2007
Expiration Date: 16-may-2015
>>> Last update of whois database: Wed, 21 May 2014 14:39:16 UTC <<<
NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar. Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.
TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
Domain Name: ebayinc.com
Registry Domain ID:
Registrar WHOIS Server: whois.markmonitor.com
Registrar URL: http://www.markmonitor.com
Updated Date: 2014-04-15T02:12:19-0700
Creation Date: 2009-06-19T14:18:59-0700
Registrar Registration Expiration Date: 2015-05-16T11:48:38-0700
Registrar: MarkMonitor, Inc.
Registrar IANA ID: 292
Registrar Abuse Contact Email: compliance@markmonitor.com
Registrar Abuse Contact Phone: +1.2083895740
Domain Status: clientUpdateProhibited
Domain Status: clientTransferProhibited
Domain Status: clientDeleteProhibited
Registry Registrant ID:
Registrant Name: Domain Administrator
Registrant Organization: eBay Inc.
Registrant Street: 2145 Hamilton Avenue
Registrant City: San Jose
Registrant State/Province: CA
Registrant Postal Code: 95125
Registrant Country: US
Registrant Phone: +1.4083767400
Registrant Phone Ext:
Registrant Fax: +1.4083767514
Registrant Fax Ext:
Registrant Email: hostmaster@ebay.com
Registry Admin ID:
Admin Name: Domain Administrator
Admin Organization: eBay Inc.
Admin Street: 2145 Hamilton Avenue
Admin City: San Jose
Admin State/Province: CA
Admin Postal Code: 95125
Admin Country: US
Admin Phone: +1.4083767400
Admin Phone Ext:
Admin Fax: +1.4083767514
Admin Fax Ext:
Admin Email: hostmaster@ebay.com
Registry Tech ID:
Tech Name: Domain Administrator
Tech Organization: eBay Inc.
Tech Street: 2145 Hamilton Avenue
Tech City: San Jose
Tech State/Province: CA
Tech Postal Code: 95125
Tech Country: US
Tech Phone: +1.4083767400
Tech Phone Ext:
Tech Fax: +1.4083767514
Tech Fax Ext:
Tech Email: hostmaster@ebay.com
Name Server: sjc-dns2.ebaydns.com
Name Server: smf-dns2.ebaydns.com
Name Server: ns1.p47.dynect.net
Name Server: smf-dns1.ebaydns.com
Name Server: ns2.p47.dynect.net
Name Server: sjc-dns1.ebaydns.com
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database: 2014-05-21T07:29:50-0700 <<<
The Data in MarkMonitor.com's WHOIS database is provided by MarkMonitor.com for
information purposes, and to assist persons in obtaining information about or
related to a domain name registration record. MarkMonitor.com does not guarantee
its accuracy. By submitting a WHOIS query, you agree that you will use this Data
only for lawful purposes and that, under no circumstances will you use this Data to:
(1) allow, enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations via e-mail (spam); or
(2) enable high volume, automated, electronic processes that apply to
MarkMonitor.com (or its systems).
MarkMonitor.com reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by this policy.
MarkMonitor is the Global Leader in Online Brand Protection.
MarkMonitor Domain Management(TM)
MarkMonitor Brand Protection(TM)
MarkMonitor AntiPiracy(TM)
MarkMonitor AntiFraud(TM)
Professional and Managed Services
Visit MarkMonitor at http://www.markmonitor.com
Contact us at +1.8007459229
In Europe, at +44.02032062220
--
-
(that means it's probly legit)
-
I saw a news item about this earlier; it appears that a message was posted by Ebay, then it was removed. So there doesn't seem to be an official message yet about the issue (if there is an issue).
Still a good reminder to change passwords, though!
-
What if someone hacked eBay email account, sent out a fake press release for people to change their passwords while they monitor the new passwords?
-
(http://www.hilariousgifs.com/tb/you-really-think-someone-would-do-that.jpg)
-
It's been posted on the BBC. I went on and changed my password as soon as I saw it, not knowing if it would be compulsorary. Now it is, I think I might have to change it again. Awesome.
-
[attachimg=1]
-
Ebay and Paypal, right?
Oh, that's gotta suck... Just thinking of some of the current GBs, accounts with tens of thousands that might get tied up in password reset hell, makes my tummy hurt.
-
Two step on PayPal. They better get my phone if they want to get into my account.
-
Two step on PayPal. They better get my phone if they want to get into my account.
What happens if you lose your phone?
-
D:
-
Done, cheers for the heads up!
-
Why would I trust eBay inc .com? EBay doesn't say anything. They didn't send any emails.
user@gorcrow:~/www/linux/themes$ whois ebayinc.com
(that means it's probly legit)
Guys, what I did was that I went to friggin' ebay.com and clicked on "About eBay" at the bottom of the page, which led me to ebayinc.com, where a link to the press released was on the front page.
If I had clicked a link to a page that does not belong to eBay, then either my computer or eBay would be truly hacked now, wouldn't it?
-
If someone wants to steal all my hundred of dollar, oh well ┐(´-`)┌
-
It's posted on eBay too.
http://www.ebay.com/reset?_trkparms=clkid%3D7076603407312995529
-
The database, which eBay said was compromised in late February and early March, held eBay customer's names, encrypted passwords, email addresses, physical addresses, phone numbers, and dates of birth.
Nice of them to let their users know. Three months later. :blank:
-
Gahhhh! Pw updated. We should all be updating our passwords at least every three months. Right gals and guys??? :D
-
The database, which eBay said was compromised in late February and early March, held eBay customer's names, encrypted passwords, email addresses, physical addresses, phone numbers, and dates of birth.
Nice of them to let their users know. Three months later. :blank:
That's pathetic. I started my responses being facetious, of course. But this is ridiculous. 2-3 months is way too long to let information like this stay under wraps.
-
AND at the same time this was happening, these ****ers were trying to convince me to tie my PayPal account to my eBay account? Wow. No ****ing thanks. I'm glad I decided not to do that.
-
eBay has announced today that some of its employee accounts have been cracked, and its user database has been compromised. Emails will go out today to members to change their passwords.
They claim that no financial information has been accessed, and no (more than normal) fraudulent activity has been detected.
Source:
http://www.ebayinc.com/in_the_news/story/ebay-inc-ask-ebay-users-change-passwords
Since I consider ebay/paypal a (legally) fraudulent business on the same level of sleaze as Goldman Sachs, lobbying organizations, Congress fundraisers and your local slum lord, 'no more than normal' levels of fraud don't mean a thing to me.
-
The database, which eBay said was compromised in late February and early March, held eBay customer's names, encrypted passwords, email addresses, physical addresses, phone numbers, and dates of birth.
Nice of them to let their users know. Three months later. :blank:
They just discovered the breach two weeks ago and made the announcement after performing an initial forensic investigation to confirm the breach and determine the scope.