Only 40% of respondents who were aware of Heartbleed said they had actually changed their passwords, Avast says. eBay should programmatically force a reset of all passwords, says TK Keanini, CTO of Lancope, in an emailed statement. eBay may add mobile apps to its list of two-factor authentication options. The only way to securely track a large amount of online account details and related access credentials is to use a password manager, or else use password managers.”]
Source: https://www.darkreading.com/attacks-breaches/7-facts-ebay-fumbles-password-reset-warning