I was sure that I was careful enough and smart enough not to end up with a security mess on the internet.
I am not a big user of eBay. I purchase items on eBay two or three times a year. The last time was two or three months ago. Suddenly on Sunday afternoon, I started getting a series of emails reporting bid status on a notebook computer. Later received a notice that I had placed the winning bid on that notebook.
After reading reporting methods, I contacted their account security people and found out that someone had succeeded in accessing my account and had changed registration information and shipping info. After locking the account down and reversing transactions, I was issued a new password. Ebay once again released my account. I then entered my account info to find out this guy had left tracks all over. He had changed the registration to another name with a New York address. The shipping address had been changed to Nigeria. At this point I decided to permanently close the account. I also closed credit card accounts and arranged for new cards to be issued. That was probably overkill, but I am not taking any chances.
How did it happen. I did system scans with all my security software. I even changed my AV software. I have used AVG for a long time. Changed to Kaspersky yesterday. Found nothing. My best guess is that this guy beat a weak 6 character password. The account was opened years ago when we didn't have the security concerns that we have today.
So far it looks like I was able to stop this early enough to avoid credit issues.
My recommendation is that you use a strong password for any financial account. In the future, any site that will accept it is getting a 20 character password from me.