REPORT SUMMARY
Date Reported
12th December 2003
Apparent Sender
eBay
Subject
Please confirm
your Ebay account
Senders Address
(spoofed)
billing@ebay
confirmation.com
Content
text and a
link to a forged
eBay
web page
(see images)
Spoofed Web page/site?
Yes
Web page/site
content
forged eBay web
page with web form
requiring eBay &
email user
name & password,
name & address
details, credit or
debit card number
and PIN, etc
Web page/site origin
URL
http://
accounts-ebay.info/..
Identity Theft method
Web form information
is captured and
relayed to the
scammers using
PHP script, while you
are sent to fake
eBay confirmation
page
More...
Latest
spoof
email scam
Another
Bank Email Scam
See our guide to
spoof email scams
Other
Resources...
See our guides to
Free Utilities...
List of
Auction Sites
eBay
Spoof Email
Scam - 'Please confirm your Ebay account'
12th December 2003
Did an eBay email you to ask you to confirm your eBay account? Well, its a scam ...
This spoof email (as eBay and Paypal like to call these email scams) uses the suggestions that your billing records are out of date and your account may be terminated to urge you to use the 'click here' link provided.
That link would lead you to a forged eBay web page which asks for your user name, password, credit or debit card number and PIN, etc.
The components of this scam that you may not notice are that, firstly the link sends you to http://accounts-ebay.info/. And secondly, that this domain is frame forwarded to a page concealed in www.projection.com's web space. This kind of forwarding is usually invisible from internet users (although, if you watch the status bar of the browser, you may notice the alternative web page address for a brief moment while the page loads), and is commonly and legitimately used by web publishers to display content from a different website while retaining the same URL in the browser address bar.
The domain accounts-ebay.info has absolutely nothing to do with eBay whatsoever, and is actually registered to an Individual in Russia through Enom, a US registration provider.
Stay informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
Email
Alerts
Add your email address to our email alert service...
Subscribe
Privacy Policy
RSS
News Feed
Tap into our Scam Alert service using your News Reader or Aggregator (including
My Yahoo!).
Scam Alert News Feed
You can even put the latest alerts on your own web site.
If you have fallen for this scam
please follow our guidelines on what to do now
FORWARD
YOUR EMAIL SCAMS
TO KU.OC.SELIMSRELLIM@FOOPS
and help us to
build awareness and
help others
Any
information submitted in that form would be sent to, or captured, by
the scammers using PHP script. No prizes for guessing what will most
likely happen then.
If you have received this hoax email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.
Take a good look at the following images, because this spoof email scam may be coming to an inbox near you!
The Email ...
The fake web page...
 |
|
|
|
|
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
|
 |
 |
 |
|
||
