Anyone who successfully registers with eBay Classifieds can assume that their password is comparatively secure. The online classifieds market has recently started comparing its users' passwords with a database that collects insecure or "cracked" passwords.
Have I Been Pwned?” data set, which includes more than 350 million entries, is made available. “. If a user's desired password is found in this, it cannot be used on eBay classifieds. The corresponding comparison during registration has been used for some time.
A compromised password alone is not enough to access user accounts - logging into eBay Classifieds is only possible in combination with the registered email address.
Protection against phishing – warning when sensitive data is received or sent
To protect against phishing, eBay Kleinanzeigen is now introducing warnings when sending or receiving sensitive information. If users provide an email address, telephone number or bank details in a message, they are informed of the associated risk and must confirm that the message has been sent again. When relevant information is received, a warning (“Caution, security risk!”) displayed immediately below the respective message - together with further information and tips for protecting against phishing.
“Fraudsters repeatedly steal personal data by asking users to share confidential information. With the introduction of 'Pay Securely', our users can complete the entire purchasing process on the platform. Anyone who is asked by other users to reveal personal data or to leave the platform should be skeptical.”
Paul Heimann, CEO of eBay Classifieds
Fewer insecure passwords after just two weeks
“Many users are still careless with their passwords, even though the damage caused by data theft or identity abuse can be significant. For this reason, we have tightened the rules for password assignment. We are now going one step further by checking passwords for existing accounts as well.”
Paul Heimann, CEO of eBay Classifieds
The comparison increases password security on eBay classifieds. Before the measure was introduced, the proportion of users who used compromised passwords was around 20 percent. The value has now fallen to a low single-digit percentage.
Security testing under strict security standards
The data set that eBay Kleinanzeigen uses to check passwords is one of the largest of its kind. The password verification takes place on eBay Kleinanzeigen's servers. The passwords are not saved in plain text. To ensure that the passwords cannot be read during data synchronization, verification is carried out using an encrypted hash value directly during entry.
When checking the password, only the hash values generated are compared, not the passwords themselves. This ensures that there is never access to the complete access data, which could be misused in the event of data theft. The test itself also follows strict security standards.
Source:
eBay classifieds
Also read our fact checks:
German water cannons against Dutch farmers?
No, you can't treat a heart attack with punches in the elbow.
Raspberries instead of painkillers? About non-scientific...
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )