Post by sAner on Aug 5, 2004 6:36:16 GMT 2
For all you e-bayers that are new and haven't seen mails like this before: be careful. It's a trick!
The initial spoofmail:
----------------------
Security@eBay.com, UNEXPECTED_DATA_AFTER_ADDRESS@.SYNTAX-ERROR. wrote:
To: pietervdhorst@yahoo.co.uk
Subject: New eBay Upgrade
From: Security@eBay.com
Date: Thu, 05 Aug 2004 08:43:06 +0530
Dear valued eBay member,
It has come to our attention that your eBay Billing Information records are out of date. That requires you to update the Billing Information If you could please take 5-10 minutes out of your online experience and update your billing records, you will not run into any future problems with eBay's online service. However, failure to update your records will result in account termination. Please update your records in maximum 24 hours. Once you have updated your account records, your eBay session will not be interrupted and will continue as normal. Failure to update will result in cancellation of service, Terms of Service (TOS) violations or future billing problems.
Please click here to update your billing records.
billing.eBay.com
Thank you for your time!
Marry Kimmel,
eBay Billing Department team.
As outlined in our User Agreement, eBay will periodically send you information about site changes and enhancements. Visit our Privacy Policy and User Agreement if you have any questions.
Copyright 2004 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc
The answer from E-bay:
-------------------------------
Hello,
Thank you for writing to eBay regarding the email you received.
Emails such as this, commonly referred to as "spoof" or "phished"
messages, are sent in an attempt to collect sensitive personal or
financial information from the recipients.
The email you reported was not sent by eBay. We have reported this
email
to the appropriate authorities.
In the future, be very cautious of any email that asks you to submit
information such as your credit card number or your email password.
eBaywill never ask you for sensitive personal information such as
passwords, bank account or credit card numbers, Personal Identification
Numbers (PINs), or Social Security Numbers in an email. If you ever
need
to provide sensitive information to us, please open a new Web browser,
type www.ebay.com into your browser address field, and click on the
"site map" link located at the top the page to access the eBay page you
need.
If you have any doubt about whether an email message is from eBay,
please forward it immediately to spoof@ebay.com. Do not respond to it
or
click any of the links. Do not remove the original subject line or
change the email in any way when you forward it to us.
If you have already entered sensitive financial information or your
password into a Web site based on a request from a spoofed email, you
should take immediate action to protect your identity and all of your
online accounts. We have developed an eBay Help page with valuable
information regarding the steps you should take to protect yourself.
pages.ebay.com/help/confidence/isgw-account-theft-reporting.html
To review eBay's new tutorial about Spoof Emails, please see the
following Web page:
pages.ebay.com/education/spooftutorial/
Once again, thank you for alerting us to the spoof email you received.
Your efforts help us ensure that eBay remains a safe and vibrant online
marketplace.
Regards,
Ian
eBay SafeHarbor
Investigations Team
______________________________
eBay
Your Personal Trading Community (tm)
*******************************************
Important: eBay will not ask you for sensitive personal information
(such as your password, credit card and bank account numbers, Social
Security numbers, etc.) in an email. Learn more account protection tips
at:
www.pages.ebay.com/help/account_protection.html
_____________________________________________
For our latest announcements, please check:
www2.ebay.com/aw/announce.shtml
_____________________________________________
In order to better serve you, we'd like to occasionally
request feedback on our service. If you would rather
not participate, please click on the link below and send
us an email with the word "REMOVE" in the subject line.
If that does not work, please send an email to the
email address below. Your request will be processed
within 5 days.
mailto:cssremove@ebay.com
*******************************************
sAner
The initial spoofmail:
----------------------
Security@eBay.com, UNEXPECTED_DATA_AFTER_ADDRESS@.SYNTAX-ERROR. wrote:
To: pietervdhorst@yahoo.co.uk
Subject: New eBay Upgrade
From: Security@eBay.com
Date: Thu, 05 Aug 2004 08:43:06 +0530
Dear valued eBay member,
It has come to our attention that your eBay Billing Information records are out of date. That requires you to update the Billing Information If you could please take 5-10 minutes out of your online experience and update your billing records, you will not run into any future problems with eBay's online service. However, failure to update your records will result in account termination. Please update your records in maximum 24 hours. Once you have updated your account records, your eBay session will not be interrupted and will continue as normal. Failure to update will result in cancellation of service, Terms of Service (TOS) violations or future billing problems.
Please click here to update your billing records.
billing.eBay.com
Thank you for your time!
Marry Kimmel,
eBay Billing Department team.
As outlined in our User Agreement, eBay will periodically send you information about site changes and enhancements. Visit our Privacy Policy and User Agreement if you have any questions.
Copyright 2004 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc
The answer from E-bay:
-------------------------------
Hello,
Thank you for writing to eBay regarding the email you received.
Emails such as this, commonly referred to as "spoof" or "phished"
messages, are sent in an attempt to collect sensitive personal or
financial information from the recipients.
The email you reported was not sent by eBay. We have reported this
to the appropriate authorities.
In the future, be very cautious of any email that asks you to submit
information such as your credit card number or your email password.
eBaywill never ask you for sensitive personal information such as
passwords, bank account or credit card numbers, Personal Identification
Numbers (PINs), or Social Security Numbers in an email. If you ever
need
to provide sensitive information to us, please open a new Web browser,
type www.ebay.com into your browser address field, and click on the
"site map" link located at the top the page to access the eBay page you
need.
If you have any doubt about whether an email message is from eBay,
please forward it immediately to spoof@ebay.com. Do not respond to it
or
click any of the links. Do not remove the original subject line or
change the email in any way when you forward it to us.
If you have already entered sensitive financial information or your
password into a Web site based on a request from a spoofed email, you
should take immediate action to protect your identity and all of your
online accounts. We have developed an eBay Help page with valuable
information regarding the steps you should take to protect yourself.
pages.ebay.com/help/confidence/isgw-account-theft-reporting.html
To review eBay's new tutorial about Spoof Emails, please see the
following Web page:
pages.ebay.com/education/spooftutorial/
Once again, thank you for alerting us to the spoof email you received.
Your efforts help us ensure that eBay remains a safe and vibrant online
marketplace.
Regards,
Ian
eBay SafeHarbor
Investigations Team
______________________________
eBay
Your Personal Trading Community (tm)
*******************************************
Important: eBay will not ask you for sensitive personal information
(such as your password, credit card and bank account numbers, Social
Security numbers, etc.) in an email. Learn more account protection tips
at:
www.pages.ebay.com/help/account_protection.html
_____________________________________________
For our latest announcements, please check:
www2.ebay.com/aw/announce.shtml
_____________________________________________
In order to better serve you, we'd like to occasionally
request feedback on our service. If you would rather
not participate, please click on the link below and send
us an email with the word "REMOVE" in the subject line.
If that does not work, please send an email to the
email address below. Your request will be processed
within 5 days.
mailto:cssremove@ebay.com
*******************************************
sAner