eBay released a statement explaining how they were recently hacked and that “their internal and customer databases were compromised earlier this year”. They did say that credit cards and other sensitive info was not compromised and is safe (being stored in a separate database) Read below for more info:
Attackers made off with names, addresses, email addresses, phone numbers, birth dates, and of course, encrypted passwords. eBay explained that financial info like credit card numbers and other sensitive data (like PayPal accounts) are kept in a separate encrypted database which wasn’t compromised. They also said they’ve found no evidence of unauthorized access or activity by registered eBay users—which is code for “we don’t think anyone’s used these passwords yet.” According to the statement, intruders compromised employee accounts first, and used their access to get the data they really wanted. They discovered the breach about two weeks ago, but the actual attack took place back in late February and early March.
To change your eBay password, log into your account, then click your name in the upper left corner. Select Account Settings (or click here to go to it directly.) Click “Personal Information” on the left side of the page, and “edit” next to your password.