Page 1 of 1
Posted: Thu Apr 28, 2005 5:45 pm
by cjk
It's spam designed to lift your personal information.
Note the url. It doesn't take you to Ebay.
Source addresses of emails are extremely easy to fake. Take the email you receive with a grain of salt. If there's any doubt in your mind as to whether an email is spam or not, it's spam.
Posted: Thu Apr 28, 2005 5:56 pm
by ThomasDodd
Forward a copy to ebay's fraud address.
Posted: Thu Apr 28, 2005 7:28 pm
by windshieldbug
You did good by asking if you weren't sure!
Posted: Thu Apr 28, 2005 7:58 pm
by Rick F
I just checked that URL above. It's been closed down.
This URL redirection has been closed down
The web site you are trying to browse to has been disabled.
The cause for this can be SPAM, illegal content or violations to Kickme.to/Has.it TOS
Posted: Thu Apr 28, 2005 9:57 pm
by Chuck(G)
Another thing is
NEVER click on an address with an "@"sign in it, nor with a site represented by a numeric value only:
For example (all of these are harmless):
http://www.ebay.com@www.tubasr.us
Or
http://support.ebay.com@1113982824
Or even
http://1113982824
Same cautions for web site addresses using the % sign:
http://purchases.ebay.com@%57%57%57%2e%54%55%42%41%53%52%2e%55%53
Or anything with a dotted IP address:
http://66.102.7.147
And
never click on an address in HTML without knowing what it actually points to:
http://www.ebay.com
Some of these may not work with all browsers, but a spoofer only needs one "sucker".
Posted: Thu Apr 28, 2005 11:55 pm
by Dan Schultz
The email you received was not from Ebay. The message you received is commonly known as 'phishing' and is designed to steal your identity. Forward email like this directly to ebay at this email address:
spoof@ebay.com
Ebay will NEVER send you a message requesting your personal information.
Posted: Thu Apr 28, 2005 11:59 pm
by Rick F
Good points Chuck. Sometimes a link can be disguised too. The link looks like the real thing, but if you 'right-click', 'copy shortcut' and then paste it in an email or someplace you can check it, you may see something entirely different. I've seen this while helping McAfee AV as a volunteer moderator on their forum.
Google sometimes does for their sponsored links to hide the fact they have tracking cookies or ad-ware. For instance, go to Google, type in "McAfee" (without the quotes). The two sponsored links look like, "
www.mcafee.com" and "
www.memoryoptimizer.com". If you copy Google's shortcut (right-click etc) and paste in somewhere, you'll see it goes to a different URL entirely. That first link takes you to McAfee by way of some browser tracking service.
eBay spoof
Posted: Mon May 02, 2005 5:31 pm
by ABQtuba
I've gotten these too. They never come from eBay. If you look at the address in the link, it's usually a URL in numerals--not eBay's. When I get these, I forward them to
spoof@ebay.com.
I've also gotten spoofed messages requesting that I update my banking info, credit card info, etc. They're never legitimate--just attempts to collect your valid information for some purpose you wouldn't approve of.
Posted: Mon May 02, 2005 5:50 pm
by ThomasDodd
I got one over the weekend, not from ebay, but a bank. My bank merged with this one before being bough by a 3rd. The spoof suggested my debit card was used in an ATM in europe, and to go to the banks site to clear it up. Since I never banked with this particular bank, I looked a little deeper.
But the link text didn't match the HTML reference.
text was bank.name.com, HTML was bank-name.com
Took me a few minutes to figure out what the problem was, but it was there.