REPORT SUMMARY
Date Reported
14th December 2003
Apparent Sender
eBay
Subject
Update Seller
Account
Senders Address
(spoofed)
Support
@ebay.com
Content
text and a
link to a fake
eBay
web page
(see images)
Spoofed Web page/site?
Yes
Web page/site
content
forged eBay web
page with web form
requiring eBay &
email user
name & password,
name & address
details, etc
Web page/site origin
URL
http://
194.102.147.47:
12123/ebay.html
Identity Theft method
Web form information
is captured and
relayed to the
scammers using CGI
script (to an email
address - vali@vali.biz), while
you
are sent to the
genuine eBay.com
sign in page
More...
Latest
phishing
scam
Another
Bank Email Scam
See our guide to
phishing scams
Other
Resources...
See our guides to
Free Utilities...
List of
Auction Sites
eBay Update Seller Account Phishing Scam
14th December 2003
This eBay request is a Phishing Scam ...
Phishing is a term used to describe scams which involve replica (fake or forged) emails and/or web pages of legitimate companies or organisations and which aim to steal those site users' Identity and/or Financial data.
Whilst it should be emphasised that eBay would never send an email of this nature, it goes without saying that scammers send masses of these forged emails out with the fair expectation that a small number will fall prey to their deceit.
The email asks that you use the 'click here' link to check and update your eBay account details. It is made all the more convincing with the use of eBay's own logo (called from eBay's own servers), but the link will open a forged eBay page in your browser. This fake web page contains a web form for you to provide your Name, Address, Email Address & Password, Ebay usernmae & password and credit or debit card data. The forged web page has the following URL .....
http://194.102.147.47:12123/ebay.html
..... which is web space provided by Dynamic Network Technologies in Romania.
Stay informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
Email
Alerts
Add your email address to our email alert service...
Subscribe
Privacy Policy
RSS
News Feed
Tap into our Scam Alert service using your News Reader or Aggregator (including
My Yahoo!).
Scam Alert News Feed
You can even put the latest alerts on your own web site.
If you have fallen for this scam
please follow our guidelines on what to do now
FORWARD
YOUR EMAIL SCAMS
TO KU.OC.SELIMSRELLIM@FOOPS
and help us to
build awareness and
help others
Once this information is provided, and the form submitted, the data will
be sent to the scammers' email address - vali@vali.biz -
using a CGI script located in the same web space as the fake page. This
happens 'invisibly' and the user would simply arrive at a genuine eBay.com
page, none the wiser. Vali.biz is registered to an organisation in
Indianapolis, USA and while it has nothing to do with eBay, it should be
made clear that scammers frequently hijack web space from legitimate sites
to ply and/or process their phishing scam pages.
If you have received this hoax email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.
Take a good look at the following images, because this hoax email scam may be coming to an inbox near you!
The Email ...
The fake web page...
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
