eBay announced to its customers on May 21, 2014 that its network had been breached by attackers. The result of the breach is that attackers were able to access a database containing customer information -- specifically, usernames and "encrypted" passwords. In this video, Elastica CTO Dr. Zulfikar Ramzan describes what has been said publicly about this attack and dissects its implications. In particular, Dr. Ramzan explains what it means for passwords to be encrypted, and explains the salting and hashing paradigm employed by eBay (and other companies) to protect passwords in databases against breaches.
Thanks for watching!
Check out additional SOCTalks at elastica.net
And please feel free to follow us on our other Social Media platforms:
Facebook - facebook.com/ElasticaInc
Twitter - twitter.com/ElasticaInc
LinkedIn - linkedin.com/company/Elastica