San Jose, CA, United States (4E) – EBay Inc. is sending e-mails Wednesday advising 145 million users of its online shopping and auction website eBay to change their passwords because cyber criminals have breached its customer database.
The breach of the database occurred in February and March and customers’ account information were likely stolen, according to eBay spokeswoman Amanda Christine Miller. The database stores customers’ names, encrypted passwords, email and physical addresses, phone numbers and dates of birth.
Customers’ financial data were not compromised as credit card information is encrypted and stored in a separate database, the company said. No unauthorized access to PayPal, eBay’s online payment service, was also found.
“PayPal data is stored separately on a secure network, and all PayPal financial information is encrypted,” the company’s statement said.
Online security analysts suspect that the hackers were from Eastern Europe and they sell stolen information and merchandise in the black market. The unauthorized access to eBay’s corporate network was made by targeting a small group of employee log-in credentials, the company said.