The [EBay] database was compromised in late February or early March, according to eBay. No financial information was lost but encrypted passwords, email addresses, physical addresses, dates of birth and phone numbers were. The firm said that other than these no “other confidential personal information” was taken.
But that’s more than enough for highjacking an individuals identity.
It added that PayPal data and information resides on a separate network, and is untouched. “PayPal data is stored separately on a secure network, and all PayPal financial information is encrypted,” eBay said.
Which begs the question “Why isn’t the EBay data encrypted?”
The breach came to light a couple of weeks ago when eBay discovered compromised employee logins on its network.