Main Menu

Login



Support Virus.Org

Help support Virus.Org by donating.
Donating allows us to keep this site free and pay the running costs of all our services.
Phishers Exploit eBay Signin Page Flaw PDF Print E-mail
Written by Editor   
Saturday, 06 August 2005 14:53
It seems that phishers have been using a flaw in the eBay sign in page that would have allowed fraudsters to successfully redirect the sign-on process to a phishing site. The scam started as many do with the phishers sending out an email which asks the user to log into their ebay account as it has been suspended, this alas is nothing new. The bit that was alarming, the link provided by the phishers was in fact real, as in it really did send you to the eBay sign in page. If the user clicked on this link, parameters embedded at the end of the link actually redirected users away from the page after the sign-in page to a fake phishing page, via an open relay hosted at servlet.ebay.com.

Then end result is that the user would send all their session information to the phishers site which could then be used to hijack the user accounts of the unfortunate user that clicked the original link. The attack was first discovered by Netcraft as it was first detected by their Anti-Phishing toolbar. Phishers targeting eBay users is not a new thing, however what made this more convincing is that you where at the time you enter the login details communicating with the real eBay servers. Most other attacks just mask the URL in the email and direct you to a fake login page to collect your account information, this attack used a vulnerability within the eBay site to capture your session information.

As always, the moral is DO NOT CLICK ON LINKS in emails without first being totally sure that the link is for real, and even then don’t click on the link just go to your browser and manually type in the home page link for the site and login that way. Also remember that Internet Banks and other high profile sites like eBay will pretty much never communicate with your via email and include clickable links.

Add this page to your favorite Social Bookmarking websites
Digg! Reddit! Del.icio.us! Google! Live! Facebook! Technorati! StumbleUpon! Yahoo!
Last Updated ( Thursday, 14 September 2006 22:05 )