While, eBay confirms that this cyber-attack was successful in compromising a database, the company says that no unauthorized activity such as, unauthorized access to financial or credit card information, which is stored separately in encrypted formats have taken place during the attack.
Further details of the attack reveal that Cyber attackers compromised a small number of employee log-in credentials, allowing unauthorized access to eBay’s corporate network, according to eBay. The compromised database stored eBay customers’ name, encrypted password, email address, physical address, phone number and date of birth. However, the database did not contain financial information or other confidential personal information. The company said that the compromised employee log-in credentials were first detected about two weeks ago. Extensive forensics subsequently identified the compromised eBay database, resulting in the company’s announcement today.