|
Donations |
|
 |
|
|
|
If you found this site helpful, please donate to help keep it online
Don't want to use PayPal? Try our physical address
|
|
|
Survey |
|
|
|
|
|
|
|
|
Translate |
|
|
|
|
|
|
|
|
|
|
| View previous topic :: View next topic |
| Author |
Message |
Topkick
Trooper
Joined: Dec 10, 2003
Posts: 13
Location: USA
|
 Posted: Sat Dec 20, 2003 8:37 pm Post subject: Someone hijacked my Ebay account, any advice? |
|
|
You guys here helped my out big time when I had a different problem so maybe you can advise me again.
I got an email from ebay this evening saying that my account's email address had been changed as per my request (needless to say I made no such request). The strange thing is that it says it was changed FROM an email address I have never heard of TO my current email address, which is what the account had anyway. When I got this I immediately tried to log on to ebay but it seems that this person was able to change my password too.
One minute later (at least they are on top of things) I got a notification from ebay that my account has been suspended to to suspictious activity. I went to the ebay security site and had a useless live chat with on of their people. They want me to FAX them a copy of my driver's license to prove I am really the account holder (which makes sense I supose but where was all this security when this jerk changed my password?). Who knows what this gy has done to my perfect feedback rating (I do a lot of business on ebay both buying and selling so if my feedback rating is messed up it is going to cost me money.)
Does anyone have any clue how this jerk did this and what I can do now and in the future to protect myself? I have his email address, can I get his name and address from this and have him arrested for fraud? |
|
| Back to top |
|
 |
phoenix22
General
Premium Member
Joined: Mar 08, 2002
Posts: 4521
Location: "DEROS"
|
| Posted: Sun Dec 21, 2003 6:18 pm Post subject: |
|
|
Cayam Worm Angles For eBay Account Info
Cayam Worm Angles For eBay Account Info
By TechWeb News
Another phishing expedition appeared on the Internet Thursday, this one dubbed W32/Cayam and targeting eBay users.
Cayam, which poses as a message from eBay with a subject heading reading 'Verify your eBay account information,' actually contains a worm in its attached file. When that attachment is opened, the worm displays several legitimate-looking screens that ask the user to enter his eBay user ID and password, then complete a seemingly official form.
The form request a whole host of personal and financial information, including the user's Social Security number, credit card information, and bank checking account number.
The worm propagates by lifting addresses out of the target PC's copy of Microsoft Outlook and e-mailing copies of itself to others, and can also spread via the peer-to-peer Kazaa and eMule networks.
Phishing, a term used to describe malicious e-mail that pose as legitimate messages from major corporations -- usually with the intent to trick the recipient into disclosing personal or financial information -- have been more aggressive this year than ever before, according to mail filtering firm Postini, which tagged an increase in the potentially lucrative practice as one of its top ten predictions for 2004.
Earlier this month, the Mimail series created a stir by trying to fool users into giving up account information for eBay's electronic payment service, PayPal.
InternetWeek |
|
| Back to top |
|
|
Guest
|
| Posted: Mon Dec 22, 2003 12:55 pm Post subject: |
|
|
| Interesting, I have recieved similair emails in the past but nothing like that happened this time. I know enough not to provide anyone with any account information so I'm not sure how this person got into my account. I managed to fix everything with ebay. The email I got notifying me that the email address for the account was changed TO my real email was because ebay did so. The criminal had earlier changed it to his email address and then posted two "items" (which I'm sure did not exist) for sale; an antique sewing machine and a breand new Mac G5. Ebay noticed that those items were totally different from anything in my profile and suspended the account withing 20 minutes. (If I had a G5 I would definately not sell it, I use a PC at home and a Mac for my work, I'd love to have a G5.) I give them credit for being on the ball but I really would like to get this guy arrested. I have no idea how he got my password. I have norton (updated) and a firewall. Does anyone have any additional security tips? I'd hate to think one of those key stroke copiers got through my security, is there a program that specifically searched for them? |
|
| Back to top |
|
|
8goldfish
Trooper
Joined: Apr 13, 2004
Posts: 12
Location: Australia
|
| Posted: Fri Jun 04, 2004 11:37 pm Post subject: |
|
|
| Anonymous wrote: |
| The email I got notifying me that the email address for the account was changed TO my real email was because ebay did so. ...Ebay noticed that those items were totally different from anything in my profile and suspended the account withing 20 minutes. |
Actually, this is kudos to the Ebay administrators. They have done a tremendous job in detecting the discrepancies. I have a similar experience just recently with my bank (which bank? those downunder will know!). I got a call just yesterday morning about some credit card transactions in France while I am in Australia. What! I reached into a panic button and realised that someone has dupped my cc and was using it in France (esp in Niece). My bank detected that the activities started from midnight and in the morning and has clocked up 5 transactions already. Immediately, they rang me up to confirm of the suspicious activities and stop my card. They also adviced me to fill up a dispute form.
Whew! The AI in their software to detect transactions profile is top class! My kudos to the software developers of the AI profile discrepancy detection. This should be where technology should be put into good use. Unfortunately, in this days of age, we have phishing, spyware, keyloggers etc,etc where ppl who have just a tiny bit of programming expertise but misused it big time.  .
|
|
| Back to top |
|
|
virus_guy
Trooper
Joined: Apr 16, 2004
Posts: 31
Location: Pakistan
|
| Posted: Sat Jun 05, 2004 6:45 pm Post subject: |
|
|
hi Topkick.
Did you sign in to the Ebay's website after you got this email?If yes,then there is a less chance of this being an email from a worm..but if no,and if you downloaded the attachment then i must say it was the worm.Anyway..its most probably that a key logger was installed on your system.Just have a look at the start up programs of your computer and disable any ones that you find suspicious.I'm not sure that the email address belongs to the real cracker..because most crackers crack into someone else's computer without them knowing it..and then use their computer for whatever they do..thus if they ever get caught its the person whom they cracked who'll be looked upon as the cracker..but you should definitely notify the ISP of the person about what happened.If this is really someone who's been hijacked then they should know that so the cracker wont be able to create any more damage.
_________________
Website=coming soon. |
|
| Back to top |
|
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
Powered by phpBB 2.0.8a © 2001 phpBB Group
Version 2.0.6 of PHP-Nuke Port by Tom Nitzschner © 2002 www.toms-home.com
Version 2.2 by Paul Laudanski © 2003-2004 Computer Cops
|
You can syndicate our news using the file RSS 0.91, ultramode.txt, or RSS 1.0.
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
