“Beginning later today, eBay users will be notified via email, site communications and other marketing channels to change their password,” eBay said in a prepared statement.

The company said there was no evidence the cyberattack resulted in unauthorized activity for eBay users, nor was there evidence that financial or credit card information was accessed. But eBay said users should change their passwords to “help enhance security.”

Cyberattacks are an increasing concern for companies and individuals, with billions of dollars lost every year to repair systems hit by such attacks. eBay is among a handful of companies, including Target Corp. (TGT) and Sally Beauty Holdings Inc. (SBH), to disclose an attack to their system in recent months.

MORE: Massive cyberattack hits Internet users

In a prepared statement, eBay said the cyberattacks compromised “a small number of employee log-in credentials.” The company, which is working with law enforcement and security experts, said the database that was compromised didn’t contain financial information. The attack occurred between late February and early March, eBay said.

EBay also said there was no indication of increased fraudulent account activity on the company’s site.

An eBay representative wasn’t immediately available to comment beyond the company’s prepared statement.