Ebay Hacked! - Credit Cards, Bank Accounts posted on T & S

eBay discussion Board ^ | Sept 35, 2007 | zekemcalister

[JDoutrider]

for later

[wastedyears]

My account isn’t there.

[sarasota]

Keep this up in breaking, please.

[publana]

From reading the entire ebay thread, I’ve seen multiple stories come out from eBay. Knowing eBay, I don’t have much faith in any of their stories. I hope it’s a hoax, but I cancelled my credit cards, notified my bank, and changed all passwords just in case.

[publana]

No, it didn’t come via email. It came from an eBay discussion board (did the link not work?) where users sat and watched the information being posted.

[fatima]

I just changed paypal password,here’s a bump.

[painter]

Bump

[the OlLine Rebel]

Ah, yes, paying by check....

[kenth]

One thing I’ve seen with some of these links, they use scripts to try to overlay official ebay links, especially the ebay login page link, onto your address bar. When your screen comes up, it will almost look as if it’s the official ebay site, address and all.

Just to add to your info.

[fatima]

OK We are not on that list.

[nutmeg]

FYI...

[JUMPIN JEHOSPOHAT]

Please put it back in breaking news.

BUMP!

[the OlLine Rebel]

If it’s real, the message will appear under your mail ON the “MY EBAY” page of your account. Do not ever bother with phishing e-mails like this. EBay itself will tell you just to check your own “My eBay” page to get valid messages.

[publana]

From what I understand, eBay says that the user information posted publicly yesterday was all correct, but not the credit card information. This conflicts with information posted by sellers that retrieved the information and checked the cards against the user data. eBay hasn’t been known for its honesty over the years; thus I feel that somebody out there most probably did have my info.

There’s also a video on utube about the situation that the poster says he has checked the info as well and the credit cards were valid and matched the userinfo published publicly.

[N. Theknow]

Yep. The link worked but it resembled other eBay scam sites I have seen. The eBay site itself has no mention whatsoever about any of this. Others say that is their, eBay's, MO.

Others say the info wasn't reliable so it doesn't amount to a "hack" in the true sense.

Whom to believe without research and sources for everything?

[CedarDave]

My poor sister is one of those persons who will willingly give out that type of information (cable company “phishing” is the most recent one she got): “It’s got their name on it, it must be from them”. I told her if she has any doubts, phone the customer service number.

[Valpal1]

It's in the ebay Chatter blog. http://www.ebaychatter.com/

If you don't want to use the link, go to ebay yourself, click on the "community" tab and then look on the middle of the right margin for the Chatter blog link.

You'd think they'd use the better visited and easier to find "Announcement" boards, but they often use the Chatter to bury stuff like this to reduce the exposure and hysteria.

[abner]

Looks like it was a 'real' problem. Here is one announcement from someone at ebay

[N. Theknow]

Very early this morning, a malicious fraudster posted on the Trust & Safety forum on eBay.com posing as approximately 1,200 eBay users.

Thanks for the link in your post.

Can't imagine someone taking his time to log on as 1200 customers with bogus postings.

Then again, the guy was probably a fired programmer from eBay with nothing but time on his hands.

[George W. Bush]

video of eBay's forum with info posted:

YouTube - ebaY Major Hack AttacK! User's Data Posted On Ebay T&S Bd

Slashdot has a good thread with more details:

---

"This morning a hacker posted the personal contact information and credit card data of 1,200 ebay users on the eBay.com Trust & Saftey forums. eBay pulled the Trust & Safety forums off line, but not before one user made a video of the hacked forums and posted it on youtube.com. eBay response is on the eBay chatter page, and seems to try and down play this "fraudster"'s activity."

source: Slashdot | Ebay Hacked, User Info Posted

---