eBay Insists Phishing Attempt Is Real?
from the that-seems-like-a-problem dept
We've heard how phishing scammers have gotten better and better at making their emails look legit -- to the point that people are now often quite confused over whether an email is legitimate or a phishing attempt. The problem is worse for legitimate emails. While people generally can spot phishing attempts, they often think legitimate emails are actually from phishers. However, one group of people you would think would be able to tell the difference would be the abuse desk at a major company targeted by phishers. After all, that's their job. Spotted on Digg, however, is a report from someone who claims he submitted what's clearly a phishing email to the eBay abuse desk -- only to be told by eBay that the email was real. The guy makes it pretty clear that the email was definitely a phishing attempt -- and eBay just doesn't seem to believe him, even though the site the email points to was hosted on a home network.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
No Subject Given
Take a look at it and see for yourself. This will give you some idea about difference b/w a spoof and the real site. And what lame emergency/defensive procedures ebay have. Or maybe their whole staff has taken a Christmas vacation ?
From Richi's blog: "However, if you're determined to research it, understand that I cannot warrant that the site is malware free. Unless you agree that you take full responsibility for your actions, do not go to www(dot)ebaychristmas(dot)net."
[ link to this | view in chronology ]
No Subject Given
The opposite is true as well. I had an email from Symantec that I was pretty sure was from them but wasn't using the symantec.com domain name (symantecstore.com). I thought this was bad practice as legit emails should only come from Symantec.com not from anywhere else. Doing so made people more willing to accept 'made up' domain names.
The fun part is that they told me that it *was* a phising email and to ignore it, when plainly it wasn't.
Best regards
Steve
[ link to this | view in chronology ]
Re: No Subject Given
A scammer/spammer can pretty much make the from field say anythimg they want. Which is one more reason to be careful about opening attachments and giving personal info in e-mails.
[ link to this | view in chronology ]
A little too real...
[ link to this | view in chronology ]
Also noted at ITBW
[ link to this | view in chronology ]
ebay has sort-of solved the phishing problem
If the ebay email does not show up in the "messages" section of my account, I automatically send in a phish report. I've had a few that were send by ebay "partners", which ebay replied were legitimate, but as far as I'm concerned, if it claims to be related in any way to ebay, and doesn't show in my messages list in my ebay account, it is NOT legitimate. period.
--
The Celtic Fiddler, violins and accessories.
[ link to this | view in chronology ]
Never use the links
[ link to this | view in chronology ]
Re: Never use the links
[ link to this | view in chronology ]
There's more to the story
[ link to this | view in chronology ]