Posted on 03/06/2010 1:02:42 PM PST by Special Agent Anthony DiNozzo
I am trying to log into my ebay account, and I am being asked for all sorts of personal information, to include an ATM PIN.
I am going to the correct URL [the browser shows it as living at "ebay.com"], so this isn't "phishing".
Ergo one of the following must be true:
1) Either Ebay has been hacked, or
2) I have a very sophisticated virus on my machine which is capable of altering my TCP/IP stack and redirecting my DNS lookups.
That part is or can be. eBay allows HTTPS login.
https I believe means the site is secure.
I'd rather take my chances with the 'Free Candy' van than put my info. on that form.
I’m sure that I have seen this before for other vendors, such as Chase. ALL financial institutions will tell you that they will NOT ask you to enter private information like this.
Bad news, chances are that they all will. This isn’t phishing, this is a hijack.
You have malware that redirecting your DNS lookups. Go to http://66.211.160.87 and see if you get the same thing.
The URL is long, have you tried just going to ebay.com and logging in if possible, before you go to ebaymotors?
No one should ask for your social security number or your ATM pin.
Also, why are you still using Internet Exploiter? There are so many security holes in that some major sites are beginning to refuse service to IE users for fear of security breach. Suggest you use Firefox or Chrome or any of the other browsers.
Just reading the paragraph at the top should tell you it is a scam. It is not phrased right.
This is not an ISP problem. This is a problem with YOUR computer.
The “s” in the https indicates it is supposed to be an SSL (secure socket layer) site. However, it’s easy to create a webpage that never actually gets published to the real web. Phishers will create a web page and then send you the link to their private webpages. Check out the email address that you received. Betcha it looks nothin’ like an ebay address.
Just reading the paragraph at the top should tell you it is a scam. It is not phrased right.
That will just redirect you, and since his computer’s DNS files have been essentially hijacked, it’ll take him back to the fake site.
If it’s his DNS lookups that are being hijacked then the ip address should still work.
Are you sure there is not a "hidden window", that is one with no browser around it, overlaying the apparent ebay window.
I can see no reason why Ebay would need your ATM pin. Giving them the CVV2 ensures them that you actually have the card, and not just the card number.
Depending on your browser you might try placing the cursor somewhere on the questionable page, right clicking and selecting "properties". in IE you can look at certificates, in Firefox you right click and select "view page info", which also allows you to look at the security info and other stuff.
That’s weird. The web address shows https:// but no padlock or anything else to show it is a secure website. Some kind of browser hijack perhaps.
Download hijack this! from Trend Micro and see what it tells you.
note more instead of much—this is foreign.
Ping!
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.