Page 1 of 1
ebay account got hacked
Posted: Sat Jun 12, 2021 7:53 pm
by mr.tourette
Thought I had a pretty secure password so not sure how they got in
Looks like they listed a load of cars, those ones you see that are always too cheap.
Thankfully they didn't manage to buy stuff and pay on my PayPal account which happened once many years ago.. Scumbags
my ebay account got hacked
Posted: Mon Jun 14, 2021 9:21 am
by Mister T
If you reuse the same password it has probably been obtained from one of the many recent data breaches.
There's a website -
www.haveibeenpwned.com - which will tell you which of your accounts has been compromised.
my ebay account got hacked
Posted: Mon Jun 14, 2021 1:19 pm
by maxman
We all are so dependent on buying on line ,this is the type of event we dread.How did you pick it up Steve ?.
my ebay account got hacked
Posted: Mon Jun 14, 2021 2:09 pm
by mr.tourette
maxman wrote: ↑Mon Jun 14, 2021 1:19 pm
We all are so dependent on buying on line ,this is the type of event we dread.How did you pick it up Steve ?.
To be fair ebay were on it before me, must have happened overnight as i'd used it the evening before and ebay dropped me an unauthorised access email at 6.44 am. Was a bit of a faff trying to get back into my account but got there after 15/20 minutes, was still a load of draft sales of other cars in there too. I've now switched to the 2 stage log in so hopefully shouldn't happen again
ebay account got hacked
Posted: Mon Jun 14, 2021 4:11 pm
by danmiddle2
eBay, like many others websites, offer 2-factor authentication (or 2 step verification). This sends an SMS message to your phone out-of-band, or uses something like Google authenticator to give you a 2nd one-time-code to augment the authentication. You should use this on all sites that offer it, and that way if your password is compromised, the bad person still can't login as you.
ebay account got hacked
Posted: Mon Jun 14, 2021 4:46 pm
by Jembo
danmiddle2 wrote: ↑Mon Jun 14, 2021 4:11 pm
eBay, like many others websites, offer 2-factor authentication (or 2 step verification). This sends an SMS message to your phone out-of-band, or uses something like Google authenticator to give you a 2nd one-time-code to augment the authentication. You should use this on all sites that offer it, and that way if your password is compromised, the bad person still can't login as you.
This is the absolute minimum anyone should be doing
Some firms are now doing what I suggested years ago of you choosing the secondary authentication method of token Authenticator of your choice, so you & you alone know it
Good old AI… that’s what probably saved your bacon