Slashdot Mirror

← Back to Stories (view on slashdot.org)

eBay Scrambles to Fix Phishing Bug

Posted by Zonk on Saturday March 5, 2005 @09:21AM from the watch-where-you-click dept.

Paul Laudanski writes "c|net is reporting that eBay is scrambling to fix a software glitch which opens doors to phishing attacks via one of its own valid URLs. "The flaw may have already allowed individuals to use one of eBay's URLs to trick unsuspecting parties into visiting malicious sites, the company representative said.""

1 of 131 comments (clear)

Min score:

Reason:

Sort:

Re:Phishing EBay by John+Miles · 2005-03-05 10:51 · Score: 4, Informative

Um, no, that's the whole thing... there aren't any goods to mail.

The idea is, I use your account to post an auction for an expensive piece of equipment with a glowing description stolen from another successful auction, photos courtesy of Google Image Search, and a Buy It Now price around 20% of retail. The victim hits the BIN button and, at my request, sends me a Western Union transfer to pay. That's the last anyone hears from me.

Typically this scam is operated from Internet cafes in Eastern European countries with twentieth-century technology and twelfth-century ethics.

--
Dahlmann tightly grips the knife, which he may have no idea how to use, and steps out into the plain.