eBay Customers Targetted by Credit Card Scam

hether writes "Customers of the auction site eBay have been targeted by a site called ebayupdates.com. The site attempts to steal credit card details from eBay's 55 million customers. The SANS Institute Internet Storm Center issued the warning on this one. Info about the scam can be found on the BBC site, CNN, CNet, vnunet, and more. Funny enough there's no mention of this on the eBay site..."

strange.. seems to be down.. =)

WHOIS Record:

Domain Name.......... ebayupdates.com
Creation Date........ 2002-12-06
Registration Date.... 2002-12-06
Expiry Date.......... 2003-12-06
Organisation Name.... Tred
Organisation Address. 1742 BOLTON VILLAGE LANE
Organisation Address.
Organisation Address. NICEVILLE
Organisation Address. 32578
Organisation Address. FL
Organisation Address. UNITED STATES

Admin Name........... Eulalia Bergenthal
Admin Address........ 1742 BOLTON VILLAGE LANE
Admin Address........
Admin Address........ NICEVILLE
Admin Address........ 32578
Admin Address........ FL
Admin Address........ UNITED STATES
Admin Email.......... qspam52@aol.com
Admin Phone.......... 713-552-6332
Admin Fax............

Tech Name............ YahooDomains Techcontact
Tech Address......... 701 First Ave.
Tech Address.........
Tech Address......... Sunnyvale
Tech Address......... 94089
Tech Address......... CA
Tech Address......... UNITED STATES
Tech Email........... domain.tech@YAHOO-INC.COM
Tech Phone........... +1.6198813096
Tech Fax.............
Name Server.......... yns1.yahoo.com
Name Server.......... yns2.yahoo.com

Re:Yet another example of bad security

[tigress]

Does nobody read the articles anymore? =)

This is not about eBay's security. It's about a spam scammer that tricks users into going to a third party website and reenter their credit card details.

Though, I'm sure the scammer encrypts all credit card details, in order to protect the customers. =)

This is not a unique happening....

[solostring]

If you check out the safeharbour forums on Ebay, this is not a rare occurance. There are many scam sites and spam emails which try to socially engineer credit card info and passwords from Ebay users.

I really don't know why this particular instance was picked up by the big news corporations....

Re:What?

[gvonk]

It's tough to find, but here's the warning:

Some members have reported attempts to gain access to their personal information through email solicitations that are falsely made to appear as having come from eBay. These solicitations will often contain links to Web pages that will request that you sign in and submit information. At eBay, we identify these as 'spoofed' emails or Web sites.

We encourage you to be very cautious of emails that ask you to submit personal information such as your credit card number or your eBay password.

To be sure that you are signing into a genuine eBay Web site, look at the Address/Location area of your browser. At an eBay.com sign-in or log-in page, the URL (link) that appears in the Address/Location area of your browser will begin with "http://cgi.ebay.com/" or "http://scgi.ebay.com". Please pay close attention to all characters in the address, including the forward slash (/) that follows "ebay.com". Even if the Address/Location includes the word "ebay", it may not be a genuine eBay Web site. If you receive or suspect you have received such an email, do not respond to it or click the links. Immediately send a copy of it to spam@ebay.com.

If you have any doubt as to whether or not the website you are on is an official eBay web page, please visit our Account Security page for more complete information on the URLs used on eBay web pages.

For more information on how to protect your eBay password and your account, click here.

Regards,
eBay