How to change your eBay password

eBay users need to change their passwords following a security breach. However, the process isn’t as easy or upfront as it could be.

ebay-password.jpg
eBay is asking users to change their passwords following a security hack that compromised a database with user passwords. So just how and where do you change your password?

eBay’s home page now sports a Password Update notice with a “Learn more” link to another page that explains what happened. But neither page links directly to the option to actually change your password, leaving users in a lurch if they don’t know what to do or where to go.

For all you eBay users, here’s how you can change your password:

  1. Sign into your eBay account at eBay’s home page.
  2. After you have logged in, hover over the down arrow at the top of the page next to your name. A dropdown menu displays a few options, including one for Account settings. Click the Account settings option.
  3. Your account page appears. On the left side, under my eBay Views, click the link for Personal Information.
  4. At the Personal Information page, a section called Account Information appears at the top with a setting for Password. Click the Edit link to the far right of the word Password.
  5. eBay prompts you to enter your email address or user ID. Type either one and then click Continue.
  6. eBay asks how you want to reset your password, either through email or a text message. Click the option you wish to use.
  7. Assuming you selected the email option, eBay sends you a Reset Your Password message. Click the link in the email. That link brings you to a page where you can enter your new eBay password. If you picked the text option instead, eBay displays a form to enter a PIN and texts you that PIN. Type the PIN in the appropriate field on that form, and the page to enter your new password appears.
  8. As always, try to devise a password that’s as strong as possible yet one you’ll remember. I know, I know, that’s not easy. As one idea, a good password manager can make the process of creating, storing, and using your passwords a lot more palatable.
  9. Enter your new eBay password once and then again to confirm it. eBay then prompts you to log in again with your new password.

You can shed a few steps off the process by not initially signing into eBay. Simply click the Sign in link at eBay’s home page. Then click the “forgot your password” link. eBay deposits you at the Reset your password page where you can pick up the process at Step 5 above.

In light of the security breach, eBay needs to make the process to change your password much easier and much more accessible. But for now, these steps should help you change your password without too much agita.

eBay Urges Users to Change Passwords After Hack

New eBay Logo
There is no evidence of unauthorized activity or access to credit card information in the three-month-old attack.

EBay is urging all users to change their passwords following a cyber attack that compromised one of the auction site’s databases.

According to today’s announcement, the database contained encrypted passwords, but there is no evidence that financial or credit card data was accessed or compromised, or that there was any unauthorized activity on eBay users’ accounts.

Still, eBay suggests that everyone change their passwords; users will be reminded starting today via email, the Web, and other channels.

The hack, which occurred between late February and early March, was detected only two weeks ago. EBay has since conducted “extensive tests” on its networks before issuing today’s warning.

“Information security and customer data protection are of paramount importance to eBay Inc., and eBay regrets any inconvenience or concern that this password reset may cause our customers,” the company said in a statement.

Earlier today, there was a bit of confusion as to whether this warning was accurate after a blog post about the hack from the eBay-owned PayPal was removed, CNET reported. It has since been reposted.

“We know our customers trust us with their information,” eBay said, “and we take seriously our commitment to maintaining a safe, secure and trusted global marketplace.”

The hack comes in the wake of the Heartbleed bug. Discovered in April, the flaw in OpenSSL left encrypted data open to scammers for more than a year.

Microsoft’s Surface Pro 3 Could Be a Laptop-Killer

By Samantha Murphy Kelly 

 
Microsoft unveiled its third-generation Surface Pro 3 device at an event in New York City on Tuesday, with larger surface area than its previous model and is lighter than a MacBook Air.

The launch of the Surface Pro 3 comes less than a year after Microsoft unveiled the Surface Pro 2, which received positive reviews for being a powerful PC inside a tablet form factor.

“This is the tablet that can replace your laptop,” said Microsoft spokesperson Panos Panay during the event. “We designed it in thinness around every corner. This is faster than the Surface Pro 2 you’ve loved to date and is much thinner.”

The Surface Pro 3 is 12 inches, up from 10.6 inches, to increase productivity and weights 1.76 pounds, without a keyboard. It measures in at just 9.1mm and is the “thinnest Intel Core product ever made,” Microsoft says. It comes with a multi-position kickstand and a 2160×1440 screen.

It also comes with an updated trackpad: “We got no praise for our [last] trackpad. We heard you.”

In addition to an improved hinge, users can now tilt the screen to an angle of up to 150 degrees. The SP3 keyboard is different than before too, capitalizing on how it sits in your lap and cuts down on shaking that occurs when you type.

 

Surface Pro 3

Image: Microsoft

Meanwhile, Adobe’s Michael Gough gave an early look of Photoshop CC, which will be optimized for touch on the Surface Pro 3.

The company announced the news at its “small” Surface event, which will likely mark its launch into the into the small-screen tablet market with the Surface Mini.

Panay made it clear that the device aims to be both a tablet and laptop — saying it has “lap-ability” — and get rid of the confusion for consumers deciding which one to buy.

“[Tablets] are designed for you to sit back and watch movies, browsing the web and snacking on apps,” said Panay during the event. “Laptops are designed to do something … editing and making. Sometimes they come out clunky or beautiful, but that is a design point and they are made for that reason.”

“It doesn’t matter what store you walk into, the conflict exist,” he said. “What am I supposed to buy? … The response is ‘what is it you want to do?’ … You’ve been told you need a tablet, but you know you need a laptop.”

Panay noted that 96% of people who own an iPad also own a laptop, but the Surface Pro 3 promises both functions.

 

Microsoft Surface Pro 3

The Surface Pro 3 sits on a scale alongside the iPad.

Image: Microsoft

“Today, we are taking this conflict away from people,” he said. “It would still have to be thin and light … it would have to be sexy, feel good … all in one package … and maybe a little bigger.”

Worse Than a Bug: Cockroach Code

[SECURITY SERIES] The Sneakiest Kinds of Malware

By John C. Dvorak

I do a few things to keep my Windows computer humming at full speed, including maintaining a clean registry using various tools such as Iolo System Mechanic and Glary Utilities. My current antivirus of choice is avast!. When I boot I actually do a CTL-ALT-DEL and look at the processes running in Task Manager to see if anything sneaky has gotten into the machine. While I’m there I kill a number of processes that are running for no good reason such as Skype, Dropbox, and other background tasks.

If I want to use Skype I will boot Skype.

Even with all this care I frequently run into a kind of browser-based malware that doesn’t necessarily show itself to antivirus software or much of anything. I call it cockroach code.

It generally takes the form of a browser hijacker. They become apparent when your browser starts acting up or slowing down. You see it when you open a new tab and discover something is in there besides a visual menu of common sites you visit. If a search bar from some alien search engine appears, you have a problem. You have a cockroach!

Often some of these hijack programs are listed in browser add-ons, extensions, or plug-ins. More often than not, they are invisible and need to be hunted down and expunged from your system.

Two of the bad actors that you will probably run into the most are Conduit Search and CoolWebSearch. Both are nasty pieces of cockroach code that embed here and there and are very elusive. They can ruin the performance of your computer because they are robbing cycles to report details of your activity back to base. Both deliver ads where they are unwelcome and on sites that normally have no ads. Companies that use these systems to advertise should be condemned.

The worse aspect of this code is that it hitches a ride with other software from download sites. Most download sites have become a mess of misleading links asking you if you want to download all sorts of alien code, none of which is what you wanted in the first place. In some instances it is almost impossible to find the download you want.

Google does not help. It will often guide you to an odd alternative site for commonly loaded code. For example, when you want a copy of Open Office you should only go to openoffice.org and none of the sites claiming to be the Open Office site. Google’s search results show’s ads first, all links questionable download sites.

Google

A lot of the genuine download sites are still cluttered with alternative things to download. Many of these “try it, you’ll like it” or “you need this” software is loaded with cockroach code that you end up installing by accident during the yes/no dialog box barrage.

What to do? Well, the best free tool I have found is the anti-malware/anti-adware product Malwarebytes. It’s a PCMag Editors’ Choice, considered best of breed, and I routinely use the free version every few months when I’m seeing performance issues within the browser environment. Best of all, it is one of the very few tools I have found that actually finds and removes all the instances of Conduit. No easy chore.

Do yourself a favor and clean up your Windows system more often. This product is a good start.

HD Voice Launches on AT&T May 23

Video

In less than a week, AT&T will make good on its promise to bring HD Voice calling to network subscribers.

Beginning May 23, the service provider will launch improved call quality on select Voice Over LTE (VoLTE) networks.

The system, which differs from T-Mobile’s approach, is tied to VoLTE, which turns voice calls into Internet data on the new 4G LTE network.

Initially, HD Voice will be made available to Samsung Galaxy S4 Mini owners in parts of Illinois, Indiana, Minnesota, and Wisconsin, and is limited only to calls between HD Voice-capable devices.

The rollout will continue to expand on a market-by-market basis; more compatible phones will also be announced in the future.

“At AT&T, you won’t have to choose between faster data speeds and crystal clear conversations,” the company said. “HD Voice customers can simultaneously talk while surfing the Web at 4G LTE speeds, all on the nation’s most reliable 4G LTE network—it’s the best of both worlds.”

During the 2014 Consumer Electronics Show in Las Vegas, AT&T wireless CEO Ralph de la Vega told the crowd that the the Asus Padfone X would be the first device to support the new calling system. However, today’s announcement made no mention of the phone-tablet combo, which is expected to launch on the network sometime this year.

T-Mobile and Sprint have also begun rolling out their own versions of HD Voice. The Un-carrier got started in early 2013, delivering improved call quality for folks carrying an HTC One S, Samsung Galaxy S III, or Nokia Astound.

And Sprint counts Kansas City, New York, Los Angeles, Chicago, Philadelphia, and Baltimore among its first HD Voice customers, with 10 compatible devices, including the Samsung Galaxy S4, Galaxy Mega, HTC One Max, LG G Flex, and Netgear Zing Mobile Hotspot.

How to make free VoIP calls on Android — without Google

Free VoIP Calls AndroidDid you feel it? Something scary happened this week.

Google pulled the plug on public access to its XMPP network. Holy tech jargon, Batman! That sounds like a bunch of nonsense, I know.

Allow me to explain: Up until yesterday, Google allowed third-party apps and services to tap into that aforementioned network — the mythical XMPP — which in turned allowed them to provide you with free Internet-based phone service. Those of us who used an inexpensive little box called the OBi to get free home phone service have already dealt with (and moved on from) the change.

But the switch-off also affected apps that offered free VoIP calling from mobile devices — including the popular Groove IP app for Android. And since Google has bafflingly still not opened up free voice calling via Hangouts for Android (cough, cough, WHAT THE HELL GOOGLE, sneeze), that leaves us without an easy and free way to make calls that don’t eat up mobile minutes.

Well, fear not, my friends: There is an answer. And it comes from the same app that used to give us that free VoIP calling via Google.

Oh, yes: It’s trusty ol’ Groove IP. The company has pushed out a new update that lets you link its app up with a free calling service called Ring.to. When you open the app after the update, it’ll prompt you to sign up for an account and pick a new phone number (an option that’s apparently exclusive to Groove IP users). The whole process takes about 20 seconds and involves no personal details beyond your name and email address.

Then, shazam: You’re back in business, sitting at a dialer and ready to make or receive calls over the ‘Net. No charges, no hidden fees.

Free VoIP Calls Android - Groove IP

Now, there is one noteworthy downside to this setup: By default, you’re stuck using a newly assigned phone number — not your own familiar digits. That means any calls you make via the service will come from that new number, and anyone who wants to call you on the VoIP service (as opposed to your regular mobile service) will need to dial your new number, too. Not quite as convenient as the old all-in-one Google Voice forwarding solution.

You can port your Google Voice number over to Ring.to if you want, though I’m not sure I’d recommend that for most people. The best way to look at this, I think, is as an emergency backup solution for when you’re low on mobile minutes and don’t want to rack up extra charges (especially if you use a low-cost and low-minute prepaid plan like I do). You’ll just have to accept the fact that any calls you make will come from an unusual number, which isn’t ideal but is certainly better than nothing.

And with any luck, it’ll be a short-term solution — just until Google comes around and delivers voice calling via Hangouts for us lowly Android rabble (sneeze, snort, snore).

The free calling is available through both the free-and-ad-supported Groove IP app and the $5 pro version of the program. Both versions of the app integrate nicely with the native Android dialer and allow you to set up rules for when VoIP-based calling will kick in.

Happy dialing, my fellow freebie-lovers!