By Mark Sutton
Users made to change passwords after eBay staff accounts compromised
Online auction site eBay is telling users to change their passwords after hackers were able to gain access to one of its databases.
The company said that one its databases was hacked in either February or March, and encrypted passwords customers' names, email addresses, physical addresses, phone numbers and dates of birth were stolen.
eBay said that there does not appear to be any actions against users' accounts at this time, but it is asking users to change passwords as a precaution.
The database was accessed after several eBay staff account logins were ‘obtained' by the attackers. eBay only became aware of the attack around two weeks ago, and has since conducted "extensive" forensic investigations to trace which of its resources had been compromised.
The database did not contain financial data, and was also not linked to data for online payment service PayPal, which is owned by eBay. There is concern however that the attackers have gained comprehensive sets of personal data that could now be used for identity theft.