Skip to main content

My EBay Philippines Account Was Hacked!

"We're writing to notify you that the password for your eBay account has been compromised. As a result, we have scrambled your password to prevent unauthorized activity."

Shown above is the introduction of an email I received from Ebay Philippines (ebay.ph) the other day. And after a bit of research, I verified that this is a genuine email from Ebay. And not only that, it appears that I'm not the only one.

Password Compromised?

What it meant is that someone got to know my password. By having my username and password, the intruder can easily access my account and do such things as:
- steal my personal information, including your address
- steal my credit card or PayPal information
- make transactions in my behalf (and from your money also)
- compromise my other accounts if I use the same set of username and password

How Much Damage?

Ebay Philippines didn't elaborate what or how much information was stolen. They also didn't mentioned how my account was compromised. But the email sounds serious enough prompting me to check my other online accounts. I particularly checked my PayPal account since Ebay and PayPal were related companies.

In addition to changing my password and adding new security features, Ebay also gave some tips to prevent this from happening again. Here are some of them:


1. Avoid spoofs
To help keep your account secure in the future, you may want to learn how to recognize and report fake ("spoof") emails and Web sites. For more information about spoof eBay Web sites and emails, please go to:

http://pages.ebay.ph/help/confidence/isgw-account-theft-spoof.html

2. Don't disclose your eBay password to any site other than eBay
We don't recommend using 3rd party tools that ask for your eBay credentials. These tools are not authorized by eBay, and providing your eBay User ID and password to a 3rd party increases your risk of unauthorized account access.

3. Use a unique, secure password.
Never use the same password for your eBay account and your email account, or the same password that you use on other websites. For tips on how to create a secure password, please visit:

http://pages.ebay.ph/help/confidence/password-secure.html

4. Antivirus protection
There are a number of computer viruses that can record keystrokes. We recommend that you keep your antivirus software up to date and use a firewall.

Image representing eBay as depicted in CrunchBase
Image via CrunchBase

Series of Hacking Allegedly from China

Some of the biggest companies in the United States such as the New York Times, Apple, Facebook, and Twitter have reported hacking attacks in the recent weeks. The reports said that the attacks were sophisticated and cannot be a work of an amateur. 

The recent reports from a US-based security firm Mandiant claimed a Chinese military division based in Shanghai was responsible for a wide-scale cyber espionage. The allegation was denied and criticized by the Chinese government. 

Whether the breach in Ebay accounts is part of this seemingly connected hacking attempts was not publicly disclosed or known. Needless to say though, the need to practice safety measures when using the internet is a must now more than ever.

Comments

Popular posts from this blog

4 Steps to Replace Stolen or Lost Passbook

My passbook (inside my bag) was recently stolen inside a local grocery store, and I would like to share the steps I took to secure my account and get a new passbook.      By User:Aerous ", CC BY-SA 3.0 , Link The steps outlined here are for a BPI savings account, but generally, the procedure will be very similar to other banks in the Philippines. 1. Call the Bank to Secure Your Account The first and most crucial step you need to do immediately is to contact your bank by phone or personally report it to the branch where you opened the account. This action will ensure that funds will stay put. The bank will lock the account immediately. The big banks have 24/7 hotlines. For BPI, it's 889-100. You have to do this step ASAP after discovering the loss. 2. Go to the Branch to Ask for a Replacement of the Passbook It can mean a simple replacement of the lost passbook, but it can also mean closing the entire account and opening a new one for security purposes. 3. Get an Affidav

SCAM: My First Scam Text This Year; 850000 Pesos from GMA Kapuso Foundation

It's a brand new year for everyone, including local scammers. And despite all the efforts by PLDT and Globe Telecom to curb text message scammers, from time to time, they still creep out and show up in our inboxes. And as hard to believe as the messages of winning some great amounts of money is the fact that there are still people who believe them. I personally know someone and that scam text message triggered events that turn her life upside down. So my point is, we still need to be careful regarding these scam messages. The danger is real! So without further ado, here's the scam message I received a few days ago. On Sunday, January 7, 2018 at exactly 3:33PM (PH time), I received this message from a certain Atty. Jhon Acosta with phone number 09552962911 Congratulations! Ursim# Hadwon PHP850,000 From(GMA KAPUSO FOUNDATION) To Claim Send Ur (NAME/ADD/AGE) &Call Me Now Im Atty;JHON ACOSTA DTI#0391s2018 Thankyou,  Do Not Ever Reply Obviously, this is a

Resigning? SSS Will Deduct Your Loan Balance from Your Last Pay

The purpose of this article is to inform the public about this policy of the Social Security System (SSS), the government-owned insurance company for those employed in the private sector. I just learned about this a few months ago when my company announced a workforce reduction program. Among the sad discussions is about this policy of SSS regarding loans in cases of resignation or retrenchment. Section G-2 of the SSS Loan Terms and Conditions (at the back of the loan application form) explicitly says the following: "The employer shall deduct the total balance of the loan from any benefit/s due to the employee and shall remit the same in full to SSS, in case the member-borrower is separated voluntarily (e.g., retirement or resignation) or involuntarily (e.g., termination of employment or cessation of operations of the company)." In other words, y ou will be required to pay the rest of your loan (including the interest) when you change employer or employment statu