While the attack took place sometime between late February and early March, the compromise was not discovered by eBay until two weeks ago.
Read more: http://www.itnews.com.au/News/386139,attackers-access-ebay-customer-passwords-personal-data.aspx#ixzz32RR9mr8X
As advised by eBay emails:Here are other steps we are taking:As always, we have strong protections in place for both buyers and sellers in the event of any unauthorized activity on your account.We are applying additional security to protect our customers.We are working with law enforcement and leading security experts to aggressively investigate the matter.Here's what we know: This attack occurred between late February and early March and resulted in unauthorized access to a database of eBay users that includes customers' name, encrypted password, email address, physical address, phone number and date of birth.However, the file did not contain financial information. And, after conducting extensive testing and analysis of our systems, we have no evidence that any customer financial or credit card information was involved. We also have no indication of a significant spike in fraudulent activity on our site.We apologize for any inconvenience or concern that this situation may cause you. As a global marketplace, nothing is more important to eBay than the security and trust of our customers. We know our customers have high expectations of us, and we are committed to ensuring a safe and secure online experience for you on any connected device.