|
|
|
Nov 12, 2006 23:47:40 GMT
|
Just a quick word of warning to all Ebay users. A couple of weeks ago, someone figured out my Ebay password and listed 99 pairs of Channel? sunglasses on my account. They changed the Paypal address to a chinese email address and raked in a fortune with 'buy it now' in the less than 24 hours each auction ran. Ebay, of course, were very slow to react. It took about 20 hours from my first email to them till the time they pulled all the remaining auctions by which time 40 'buy it nows' had gone through. The scumbags hadn't changed my password so I altered as many as poss. of the remaining auctions ticking the 'used' box and saying the glasses didn't exist. 2 hours before the end of the auctions, Ebay pulled them. I still haven't got access to my account though Ebay assure me I won't have to pay any of the £200 charges that had accrued before I lost access. The lesson?  ? Change your password regularly. I hadn't for about 4 months and wonder if it helped the baddies. |
| |
Jet noise....the sound of freedom
|
|
|
|
|
|
|
Nov 12, 2006 23:54:06 GMT
|
|
i havent changed mine for years. eek!
ba$$tards.
|
| |
|
|
|
|
|
Nov 12, 2006 23:55:40 GMT
|
 That sucks!  :)Thanks for the warning mate.
|
| |
|
|
|
|
|
|
|
Same thing happened to the Jewellery shops eBay account where my partner works. Not suprised though, the password was the same as the username!!! FFS!!! eBay was just as useless then as well. Cheers for the warning  and the reminder about some of the scum on eBay. *hurrys off onto eBay to change password* |
| |
Last Edit: Nov 13, 2006 0:04:06 GMT by MiniDan
|
|
|
|
|
|
|
|
More important than changing your password regularly is to pick one that's a mix of random letters and numbers.....
I'm curious as to how they 'guessed' your password - there's only 2 ways this could have happened.
First is that you've used something that's obviously associated with you from information freely available on the 'net.
Second, and most likely, is that you have a 'keylogger' residing on your system. Do a spyware check *now* - it doesn't matter how often you change your password if there's a keylogger transmitting it back to the scammers.
Finally..... are you *sure* you haven't just given it to them by using a link in a 'phishing' email?
I've had the same password on ebay for about 5 years now and never had any hassle.
|
| |
Prius T-Spirit, Alfa 156 Sportwagon, Alfa 75 TSpark Veloce, Mazda MX-5 1.8iS
Honda VFR750FT, Ducati 750SS, BMW R100RT, Hongdou GY200
|
|
Odin
Posted a lot
Posts: 1,406
|
|
|
|
Also, use strong passwords that include symbols and numbers.  Edit: a bit slow off the mark methinks. Sound advice up there ^, but sort out antivirus too - your current one (you do have one, right?) is no good. Get avast. |
| |
Last Edit: Nov 13, 2006 0:08:53 GMT by Odin
|
|
|
|
|
|
|
More important than changing your password regularly is to pick one that's a mix of random letters and numbers..... I'm curious as to how they 'guessed' your password - there's only 2 ways this could have happened. First is that you've used something that's obviously associated with you from information freely available on the 'net. Second, and most likely, is that you have a 'keylogger' residing on your system. Do a spyware check *now* - it doesn't matter how often you change your password if there's a keylogger transmitting it back to the scammers. Finally..... are you *sure* you haven't just given it to them by using a link in a 'phishing' email? I've had the same password on ebay for about 5 years now and never had any hassle. Thirdly - Dictionary attack *n |
| |
Top grammar tips!
Bought = purchased. Brought = relocated
Lose = misplace/opposite of win. Loose = your mum
|
|
|
|
|
|
|
|
I had a bad experience where someone hacked my account and listed a JCB on my seller account. I was looking at some stuff I was selling and couldn't believe it. It was listed in South America on a buy it now for $5000 I got straight onto Egay using the report a dodgy listing link in help section. The result was two days later they actually stopped the listing and then accused me of a frauduelent listing and shut my account down. I lost a 98% feedback of 300+ deals and couldn't pay for things I won and couldn't send invoices for things I'd sold. They just don't care all they want is your money. Best of luck with the scum.
|
| |
|
|
|
|
|
|
|
More important than changing your password regularly is to pick one that's a mix of random letters and numbers..... I'm curious as to how they 'guessed' your password - there's only 2 ways this could have happened. First is that you've used something that's obviously associated with you from information freely available on the 'net. Second, and most likely, is that you have a 'keylogger' residing on your system. Do a spyware check *now* - it doesn't matter how often you change your password if there's a keylogger transmitting it back to the scammers. Finally..... are you *sure* you haven't just given it to them by using a link in a 'phishing' email? I've had the same password on ebay for about 5 years now and never had any hassle. Like you, I've been on Ebay for years, since early 2000 I think and I've never had problems before now. I heard all the stories and thought the victims must have been doing something wrong. It couldn't ever happen to me!!! The password wasn't random letters and numbers but it was a sequence which isn't in anyone's vocab. As for responding to an email.....no-one falls for those do they? My computer is regularly checked for things it shouldn't contain and no other account has been touched. It makes me wonder. You never know what kind of software is available now. Perhaps they were just jealous of my 1000+ positive feedbacks. |
| |
Jet noise....the sound of freedom
|
|
|
|
|
|
|
|
One other thing you need to be careful of is there are a number of email auctions that either have links to more pictures and then take you to an ebay log in screen or other ones are actually when you are looking through listings and you click an item these redirect you to an ebay log in screen.
The ebay log ins look completely genuine as well you can only tell by looking at the address at the top of the screen and even those are normally a redirecting address which looks fairly genuine.
|
| |
|
|
|
|
|
|
|
|
|
|
yeah, the favourite is where theres pics on scantily clad women in listings, I noticed a number of these on listings recently. Apparently a lot of them are actually phishing links.
You can get a thing called Steganos and others which store all your passwords in encrypted form and won;t allow your passwords to go out without you approving the actual page which is reqesting them and all sorts. I tried it but it meant I couldn't have paypal in my eBay auctions for some reason as it kept converting my email address (in the send paypal payments to.." bit) into all hashes. User error probably.
I know a few people have got caught who aren't "newbies".
|
| |
1941 Wolseley Not Rod - 1956 Humber Hawk - 1957 Daimler Conquest - 1966 Buick LeSabre - 1968 Plymouth Sport Fury - 1968 Ford Galaxie - 1969 Ford Country Squire - 1969 Mercury Marquis - 1970 Morris Minor - 1970 Buick Skylark - 1970 Ford Galaxie - 1971 Ford Galaxie - 1976 Continental Mark IV - 1976 Ford Capri - 1994 Ford Fiesta
|
|
|
|
|
|
|
|
It is also extremely advisable to have a completely different password for your Paypal account if you have one.
|
| |
1986 Citroen 2CV Dolly Other things. Check out my Blog for the latest! www.hubnut.org |
|
|
|
Ebay warningarthurbrown
@GUEST
|
|
|
One other thing you need to be careful of is there are a number of email auctions that either have links to more pictures and then take you to an ebay log in screen or other ones are actually when you are looking through listings and you click an item these redirect you to an ebay log in screen. The ebay log ins look completely genuine as well you can only tell by looking at the address at the top of the screen and even those are normally a redirecting address which looks fairly genuine. Yeah, I got 'phished' like this, I followed a link that PheonixC had put on here!!! some fugga listed a BMW M3 for £12k, and ebay pulled it within an hour. Took me about 4 hours to recocontrol of my account - ebay may it deliberately obtuse how to do this though. T0ssers. |
| |
|
|
|
|
|
Nov 13, 2006 11:27:44 GMT
|
ebay are a pain in the rse if you have a problem - but ultrafast at contacting me when i contravene listings regs. (usually by mistake) i change all my passwords regularly - but i know of regular ebay / paypal users who say they use one password for all internet activity - this is very foolish - if a forum, or your email account are hacked - your open for explotation you wouldnt write your switch card number and pin on a beermat in a busy pub - so why leave details of passwords lying around on your pc and websites |
| |
Someone just shot the elephant in the room. |
|
Nathan
Club Retro Rides Member
Posts: 5,650
Club RR Member Number: 1
|
Ebay warningNathan
@bgtmidget7476
Club Retro Rides Member 1
|
Nov 13, 2006 12:03:32 GMT
|
|
Ebay do as much as they can in terms of the security level they put on the site (SSL), so None of this would be their fault. To me this sounds like a Spyware problem so I would get that sorted right away.
I have never changed my password and have no problems, also its very hard for a hacker to gain your password in transit as it goes to the site (I know this as I am employeed to stop suck acts, and methods) as the psswords are sent encrypted. It would be far simpler for a such a person to break into the ebay system and gain your details!
If it was me wanting to perform such an act it would be eaiser to find a numpty with a wireless router set to show the ID. Join to it and search for machines on that network, then extract the info from the cookies, and AUTO types.
Lesson to be learnt here guys, USE YOUR BRAIN, YOUR WERE GIVEN A MEMORY FOR A REASON don't RELAY ON A COMPUTER.
|
| |
|
|
|
|
|
Nov 13, 2006 18:20:56 GMT
|
One other thing you need to be careful of is there are a number of email auctions that either have links to more pictures and then take you to an ebay log in screen or other ones are actually when you are looking through listings and you click an item these redirect you to an ebay log in screen. The ebay log ins look completely genuine as well you can only tell by looking at the address at the top of the screen and even those are normally a redirecting address which looks fairly genuine. Yeah, I got 'phished' like this, I followed a link that PhoenixC had put on here!!! some fugga listed a BMW M3 for £12k, and ebay pulled it within an hour. Took me about 4 hours to recocontrol of my account - ebay may it deliberately obtuse how to do this though. T0ssers. That was a Shelby Mustang Elanor copy. As soon as I realised I put a warning on here and contacted ebay. Thats why I always double check the login address before putting in my password as well, especially if I know I have already logged in to ebay  |
| |
|
|
|
|
|
Nov 13, 2006 19:22:11 GMT
|
If it was me wanting to perform such an act it would be eaiser to find a numpty with a wireless router set to show the ID. Join to it and search for machines on that network, then extract the info from the cookies, and AUTO types. Lesson to be learnt here guys, USE YOUR BRAIN, YOUR WERE GIVEN A MEMORY FOR A REASON don't RELAY ON A COMPUTER. Great advice. Trouble is, I don't have a wireless router and my passwords (all different) aren't stored on the puter. Done another scan with some anti-Spyware stuff and it doesn't pick up anything. God I hate computers! |
| |
Jet noise....the sound of freedom
|
|
? Change your password regularly. I hadn't for about 4 months and wonder if it helped the baddies.
That sucks! 
and the reminder about some of the scum on eBay.
