eBay has issued a statement urging users to change their passwords following a cyberattack on one of its databases.
The online auctioneering giant has admitted its database was hacked between February and early March and customers’ names and other personal details may have been compromised.
“Cyberattackers compromised a small number of employee log-in credentials, allowing unauthorised access to eBay’s corporate network,” the company said in a statement.
“The database … included eBay customers’ names, encrypted passwords, email addresses, physical address, phone number and date of birth. However, the database did not contain financial information or other confidential personal information.”
Encrypted financial and credit card information is stored separately by the company, so was impervious to this attack.
eBay did add that it hadn’t seen any unauthorised activity on its users’ accounts and “has no evidence of unauthorised access or compromises to personal or financial information for PayPal users”.
The hackers accessed the database by using a “small number of employee log-in credentials”, but only became aware of it a fortnight ago.
“Beginning later today, eBay users will be notified by email, site communications and other marketing channels to change their password.”
The company also advised users to change the passwords for other sites that they have used the same passwords for.
“Information security and customer data protection are of paramount importance to eBay Inc and eBay regrets any inconvenience or concern that this password reset may cause our customers. We know our customers trust us with their information, and we take seriously our commitment to maintaining a safe, secure and trusted global marketplace.”
Read more: Best laptops 2014