Seems eBay had some kind of major site issue last night. Users were unable to login, were told there passwords were wrong, some were told they needed to register as they had no account. Over the last weeks eBay has been acting up a bit, slow loading, images wrong, dashboard not in sync. So can someone please explain to me where all the fees (that keep going up) are going?
Some sites are claiming that eBay was the victim of a hack, would not be the first time. The claims are based on the fact that eBay’s phone support and online support was shut down to the outside world. If that is true and with the recent major database hack they suffered this year, I guess they will be a bit quiet about it.
The eBay password mess rolls on it seems, after being quiet for about a week while this story was making the news, front page of papers, TV & radio and wherever, eBay have finally made the users change their passwords. In this case its too little too late, the passwords are the least of your worries if the attackers got there hands on everything else eBay has on you. Now a story from the Daily Mail in the UK is hinting at eBay UK’s possible fine from the Information Commissioner could only amount to roughly 2p per customer which would take about 0.0002% of eBays tax dodging profits away… (await the increase in fees to cover it)
Whatever the size of the fine it won’t be paid by eBay, 12.5% FVF should solve that little problem.
From the BBC a article about eBay’s internal systems/database’s getting compromised, eBay are claiming as far as they can see no personal information was taken other than a load of encrypted data and some non-financial stuff (probably all them DSR scores). They are advising users to change their passwords but the bigger question here is why has it taken them 2 months (the attack was in February/March)to bring this up? Also why is it all over the news and not on eBay’s sites?
PayPal link many other huge corporations with internet operations has a “bug bounty program” where they will pay researchers for finding bugs, glitches, exploits in there stuff. In this case a 17 yr old kid from Germany by the name of Robert Kugler finds a vulnerability in 1 of PayPal’s site… guess what PayPal won’t pay him citing some terms which are not actually part of the bug bounty terms (typical PayPal behaviour then) there picking on the kids age, they say he needs a verified PayPal account, he can’t have one because he’s not 18, so he asked for the reward to be paid into his parents account but PayPal won’t because “technically” the parents did not find the bug, the kid also asked for a letter so he can use it on job apps they have not come forward with that yet either. So next time he finds something I wonder where he’s going to be sending that information…