eBay was hit with a serious security crisis this morning. Hackers posted to the Trust & Safety forum on eBay.com personal account information of 1,200 users, including phone numbers and apparent credit information.
eBay verified that the account information was accurate and said that the posts were made to appear as if they originated from the affected users’ accounts, which could indicate a possible mass account takeover.
eBay is trying to downplay the crisis by saying that the credit card information they’ve checked has been wrong… so far, at least. “The posts ALSO appeared to contain credit card information — however, these credit cards are not associated with financial information on file for these users at eBay or PayPal,” said the company in a statement.
eBay’s forums vendor LiveWorld has been working with eBay’s security teams to try to remedy and trace the incident.
The forums are temporarily unavailable, but a user made a video of the attack posts, which has been posted on YouTube. The video obscures the personal information, mostly, but tries to show the times of the attacks and other pertinent information.
eBay has been a frequent target of malicious behavior due to its large traffic volume and financial data. Earlier this month DailyTech reported that security experts have been monitoring an ongoing attack on eBay by a giant bot-net. eBay constantly has to tried to tackle these attacks and protect its customers’ information.
EBay, Security, Vulnerability, Exploit, Hacking, Intrusion