how your eBay accounts get stolen - detailed story inside

[MikePanic]

ok... for the bike shop i work at, i do online sales, some of which include ebay... i was sent the following html document as an ATTACHMENT which started to throw sparks up right away. so i downloaded and looked further... it IS indeed how people get your accounts.

i modified the page to remove the email address that was put on it and put a HUGE disclaimer on it at the top... if you fill out the form and submit it, its your own fault... i just feel that its important to show the actual html page rather then a screen shot..

heres what they sent me: http://www.mikepanic.com/ebay.htm

note that eBay logo in the top right actually does go to ebay.com and same w/ the privacy policy and user agreement links (if you hover the links you can see the destination in the stats bar of your browser)

so how did i know its a scam? right click the eBay logo itself and check its properites - http://pics.ebaystatic.com/aw/pics/email/eBayLogo.gif that is NOT an official ebay page

also - they were dumb enough to NOT cloak the URL where the form was being sent to, so i removed that (the form does not work even if you try to make it) and i changed the "submit" button to say "do not submit"

if you see something similar to this, do NOT fill it out

now... who's got the ebay abuse email so i can submit the original email/page to?

 

[helloedchen]

you are sherlock holmes!

 

[purbeast0]

what is really the use of stealing an ebay acct? i havent used it in over 3 years now, do they associate cc info with accts now or somethin so that the cc information can be obtained if you have the user acct?

 

[Scarpozzi]

Wow!!! Is this kind of scam new?

 

[dpm]

HOLY GOD!

Say, do you know anything about this email i got from this NIGERIAN DUDE WHO LIKES TO USE CAPITALS?



Anyway, I'm surprised you haven't seen any of these before, whether for ebay or online banking or whatever. That one is a step up from the norm - normally the spelling and punctuation are so atrocious that you can't help but notice its a fake.

 

[kranky]

Originally posted by: purbeast0
what is really the use of stealing an ebay acct? i havent used it in over 3 years now, do they associate cc info with accts now or somethin so that the cc information can be obtained if you have the user acct?

Let's say I can hijack a long-standing ebay account with very good feedback. Using the hijacked account, I change the email address and I put up some auctions for expensive items. The age of the account and the good feedback make people comfortable bidding. I take the money and deliver nothing. That's why people want to do it.

 

[MikePanic]

Originally posted by: purbeast0
what is really the use of stealing an ebay acct? i havent used it in over 3 years now, do they associate cc info with accts now or somethin so that the cc information can be obtained if you have the user acct?

the use? tons... right now the big thing is to sell top dollar digital camera's (like canon and nikon dslr's) that cost $6000 msrp at a legit camera shop for buy it now's of $2500.

they use your account w/ good feedback and only accept payment via western union money transfer, which can't be traced.... they get your money and you dont get notta... you think its a good deal because the person's account your buying from does indeed have good feedback

this is also really popular w/ guitars and motorcycles right now

Scarpozzi - this scam is at least a year and a half old, if not older

dpm - i have heard of these for some time now.... ive just never actually received one of the emails myself and had the chance to show other un-knowing people

 

[lancestorm]

Oh darnit. I thought we could do an ATOT effect and send crappy, non working id's and filthy passwords to the jerks...

 

[MikePanic]

yea... for the safety of everyone i removed the form's desitnation URL so its non working... cuz even w/ those huge bold letters at the top... i did NOT wanna b responsible for someone getting their account jacked

 

[purbeast0]

Ah okay, thanks for the insights heh.

 

[minendo]

Originally posted by: MikePanic
Scarpozzi - this scam is at least a year and a half old, if not older

Your sarcasm detector is broken.

 

[halik]

oh my god! is that possible?

... REPOST

 

[Hammer]

OMG. CALL THE FBI AND CNN. THIS IS BREAKING NEWS!

SET HOMELAND SECURITY CONDITION TO RED!!!

 

[MercenaryForHire]

Take it easy on the guy - he obviously just put his The Internet v9.0! disc in.

- M4H

 

[minendo]

Originally posted by: MercenaryForHire
Take it easy on the guy - he obviously just put his The Internet v9.0! disc in.

- M4H

This stuff is beta 0.91.

 

[Yossarian]

are you saying I shouldn't give my password out in a form sent by email? you are teh security genius!!!!!one

 

[badluck]

figuring out that you should not fill out forms via e-mail!!??

Brilliant!

 

[Kipper]

Forward it to spoof@ebay.com

 

[RossMAN]

Originally posted by: Yossarian
are you saying I shouldn't give my password out in a form sent by email? you are teh security genius!!!!!one

LOL you guys are ruthless.

Here's how I prevent from falling for these scams, these are my secrets I am about to divulge:
1) Engage COMMON SENSE.
2) I use PINE for my primary e-mail account, no Outlook/Eudora for me. So HTML stuff cannot hide, everything is revealed even if it's cloaked.
3) If Paypal, eBay or Al Gore sends me an e-mail with an attachment I don't even open to read the e-mail it gets deleted.
4) I get about 4-5 Paypal or eBay scam e-mails a week. I open them up, check the from e-mail address, look at the headers, see if any of the URLs redirect anywhere, etc.
5) Even if it's a LEGIT e-mail from eBay, Paypal, CitiBank, etc. and it has a link. I won't click it. Instead I will manually open my web browser and type in the web site URL.

Let's see if anyone is more paranoid than I am

 

[MikePanic]

great... i try to help some people out and get sh*t on... well done

 

[geno]

Originally posted by: MikePanic
great... i try to help some people out and get sh*t on... well done

meh, ignore it, you're just trying to help