Options
Warning to all: Most sophisticated eBay scam yet?
Manorcourtman
Posts: 8,395 ✭✭✭✭✭
So I had an coin auction end this afternoon. About 15 minutes after it was over I get this email:
---------------------------------------------------------------------------------
Question from munch_2
munch_2( 1128)
Positive feedback: 99.9%
Member since: Oct-15-02
Location: MI, United States
Registered on: www.ebay.com
Item: 1899 PCGS MS65 "V" Nickel, GEM Cartwheel Luster NR (160094965179)
This message was sent after the listing closed.
Look at what this guy what is saying about you :
http://members.ebay.com/aboutme/my2sonsandme
Respond to this question
------------------------------------------------------------------------------
Immediately I am skeptical. I cut and paste the members link and go to eBay. The eBay member (my2sonsandme) is a registered eBay member that looks legit. BUT, when you click on his about me page it asks for your eBay name and password. The About Me symbol on the eBay page links you to a Yahoo members page that is phishing for your log-in info.
Pretty sophisticated phishing attempt if you ask me. I do not know if the ebay member who emailed me after the auction was closed is aware of his account being used nor do I know if the guy with his about me page is aware of the false link? What say you guys? BTW they were both reported.
---------------------------------------------------------------------------------
Question from munch_2
munch_2( 1128)
Positive feedback: 99.9%
Member since: Oct-15-02
Location: MI, United States
Registered on: www.ebay.com
Item: 1899 PCGS MS65 "V" Nickel, GEM Cartwheel Luster NR (160094965179)
This message was sent after the listing closed.
Look at what this guy what is saying about you :
http://members.ebay.com/aboutme/my2sonsandme
Respond to this question
------------------------------------------------------------------------------
Immediately I am skeptical. I cut and paste the members link and go to eBay. The eBay member (my2sonsandme) is a registered eBay member that looks legit. BUT, when you click on his about me page it asks for your eBay name and password. The About Me symbol on the eBay page links you to a Yahoo members page that is phishing for your log-in info.
Pretty sophisticated phishing attempt if you ask me. I do not know if the ebay member who emailed me after the auction was closed is aware of his account being used nor do I know if the guy with his about me page is aware of the false link? What say you guys? BTW they were both reported.
0
Comments
I got two paypal phishing emails today. A record. Usually only once a month or so.
Does anyone ever try to track down these cyber thieve's?
<< <i>I got two paypal phishing emails today. A record. Usually only once a month or so.
Does anyone ever try to track down these cyber thieve's? >>
I've met FBI agents that attend Anti-Phishing Working Group meetings. After the working meetings, usually everyone heads out for some drinks at a local pub. At one of these pub gatherings, a FBI agent was like (my paraphrasing) "(with all the money being made,) do you ever feel you're on the wrong side"? HAHA!
One of the difficult things about getting to the actual people behind the phishing sites is that many are run by foreign organized crime syndicates. It's a lot easier to shut down sites as they come up.
<< <i>This is not a phishing website...the idiot "bookmarked" his ebay sign-in page & emailed it to you....what an idiot... >>
When you try to enter a fake id/pw and hit enter it directs you off eBay.
<< <i>Some phishing site lists get disseminated to some web browsers for extra protection outside of any action individual websites may take. >>
Won't work in this case. This phish uses a legit eBay URL. The about me page is just coded like a login page with script pointing to another server.
<< <i>This is not a phishing website...the idiot "bookmarked" his ebay sign-in page & emailed it to you....what an idiot... >>
It's not a sign in page, just coded to look like one.
Russ, NCNE
<< <i>
<< <i>Some phishing site lists get disseminated to some web browsers for extra protection outside of any action individual websites may take. >>
Won't work in this case. This phish uses a legit eBay URL. The about me page is just coded like a login page with script pointing to another server.
<< <i>This is not a phishing website...the idiot "bookmarked" his ebay sign-in page & emailed it to you....what an idiot... >>
It's not a sign in page, just coded to look like one.
Russ, NCNE >>
Hmm. Pretty ingenious. I wonder if the browser can flag specific URLs instead of just domains. If so, it could still work but I'm not sure if it works that way.
Dangerous phishing Ebay message
I have auto fill for my name and PW and never need to sign in.
I then opened another window, went to my ebay me page w/o having to sign in.
Clicked on "community" and searched for his user name.
Again, I was asked to sign in.
Got out of there as quick as I could.
Gotta be something phishy about the whole thing.
JT
I collect all 20th century series except gold including those series that ended there.
Russ, NCNE
<< <i>I just tried his url and it took me to an "ebay page" wanting me to sign in.
I have auto fill for my name and PW and never need to sign in.
I then opened another window, went to my ebay me page w/o having to sign in.
Clicked on "community" and searched for his user name.
Again, I was asked to sign in.
Got out of there as quick as I could.
Gotta be something phishy about the whole thing.
JT >>
I'm not sure how your auto fill works but if it submitted the info on your behalf, I hope you immediately changed your password after the experiment.
Russ, NCNE
<< <i>This needs to stay near the top. Some forum members are falling for it.
Russ, NCNE >>
I fell for it. Changed my password immediately and notified ebay. Will check my account daily for anything odd.
<< <i>
<< <i>This needs to stay near the top. Some forum members are falling for it.
Russ, NCNE >>
I fell for it. Changed my password immediately and notified ebay. Will check my account daily for anything odd. >>
Has me fooled. Sure looks like a legit URL. Signed on using phony user i.d & password .. once it accepted the info, I knew it is a scam.
DO NOT ANSWER ANY EMAIL FROM EBAY OR PAYPAL THAT ASKS FOR A PASSWORD >>>>>>> PERIOD.
<< <i>these phishing scams are avoidable in one simple way
DO NOT ANSWER ANY EMAIL FROM EBAY OR PAYPAL THAT ASKS FOR A PASSWORD >>>>>>> PERIOD. >>
Good advice, but it would not have worked in this case. The phishing lure is a real "about me" page on ebay. The password request is not in the email.
incidentally, the "aboutme" page has gone blooey. Looks like ebay heard our cries.
I just changed my ebay password again, can't hurt.
<< <i>these phishing scams are avoidable in one simple way
DO NOT ANSWER ANY EMAIL FROM EBAY OR PAYPAL THAT ASKS FOR A PASSWORD >>>>>>> PERIOD. >>
It isn't expressed simply as e-mail. It comes in the form of a "question from buyer" at ebay itself. That's what makes it deceptive.
I've received 10 of these in the last 3 days. I forward the e-mail end to spoof@ebay.com and got an automated response. I have no idea if they're trying very hard to stop the thieves.
I got the exact same email when I had auctions closing on Sunday as well. Led me to the same eBay user too.
Apropos of the coin posse/aka caca: "The longer he spoke of his honor, the tighter I held to my purse."
Am I the only one using the Pay Pal security key? One time charge of $5. and you can also use it to log in to Ebay. Changes the number everytime you log in.
Forum Scam thread.
Tyler
<< <i>However, the link is fraudulent. >>
The link is not fraudulent. It is, in fact, a legitimate eBay URL. That's why normal safety precautions such as software or browsers and plugins that detect bogus links will not work. It is important that those who use those types of methods thinking they are safe realize this.
The page itself is fraudulent.
Russ, NCNE
Security key gives someone less then 30 seconds to log in to your account before the password is changed if you give it to a fraud site.