Scam on Ebay!
#1
Registered User
Thread Starter
Join Date: May 2003
Location: Miami, Florida
Posts: 2,076
Likes: 0
Received 0 Likes
on
0 Posts
Scam on Ebay!
Check this out:
Cheap Ferrari Modena Spider on eBay!!!
A Modena Spider that met the reserve at only $100,000? Don't these cars sell for at least $250K? Sounded like an awesome deal to me, until I saw the "security check" box that you need to fill out with your password in order to read the product description! Anyone who knows squat about ebay knows there is no such thing, much less under the "product description" section which is filled out by the seller. Nothing more than a scam to get your user ID and password and hack your account
Can anyone show me how to send a virus to these people?
Cheap Ferrari Modena Spider on eBay!!!
A Modena Spider that met the reserve at only $100,000? Don't these cars sell for at least $250K? Sounded like an awesome deal to me, until I saw the "security check" box that you need to fill out with your password in order to read the product description! Anyone who knows squat about ebay knows there is no such thing, much less under the "product description" section which is filled out by the seller. Nothing more than a scam to get your user ID and password and hack your account
Can anyone show me how to send a virus to these people?
#4
Registered User
Join Date: Dec 2002
Location: houston, texas
Posts: 5,727
Likes: 0
Received 0 Likes
on
0 Posts
woah.. the IP address almost even looked real.... I've gotten some of these emails asking for my ebay user name/password too.. and I almost fell for it.. scary shiet
#5
Registered User
I'm not so sure - not that I'd submit my id, but I looked at the source and the form in question submits to Ebay...
<form name=form1 method=post action=http://session.ebaymotors.com@ebayupdates.biz/session.php>
Interesting indeed - there is no indication of submittal anywhere but ebay within the HTML source...and you can't SPOOF the host cgi.ebay.com - it is an EBAY domain...
<form name=form1 method=post action=http://session.ebaymotors.com@ebayupdates.biz/session.php>
Interesting indeed - there is no indication of submittal anywhere but ebay within the HTML source...and you can't SPOOF the host cgi.ebay.com - it is an EBAY domain...
#6
Registered User
Join Date: Feb 2002
Location: Virginia Beach, VA
Posts: 13,065
Likes: 0
Received 0 Likes
on
0 Posts
The real sign-in page:
http://signin.ebay.com/aw-cgi/eBayISAPI.dl...geType=174&i1=0
Their sign-in page:
http://signin.ebay.com/aw-cgi/eBayISAPI.dl...Name=h:h:sin:US
http://signin.ebay.com/aw-cgi/eBayISAPI.dl...geType=174&i1=0
Their sign-in page:
http://signin.ebay.com/aw-cgi/eBayISAPI.dl...Name=h:h:sin:US
#7
Funny, I did the same thing you did.
However, I'm not convinced that session.ebaymotors.com is legit.
The normal ebay motors login page does not contain this reference in its HTML.
However, I'm not convinced that session.ebaymotors.com is legit.
The normal ebay motors login page does not contain this reference in its HTML.
Trending Topics
#9
Registered User
I went to the actual www.ebaymotors.com website and searched for that item number, and it did come up as an actual real item. I dunno if that helps at all...
#10
Registered User
Join Date: Jan 2004
Location: san diego
Posts: 242
Likes: 0
Received 0 Likes
on
0 Posts
It's a bug in internet explorer (it hides the actual address in the address bar [more here:http://www.derkeiler.com/Mailing-Lists/NT-...03-12/0027.html]
After entering the username and pass it brings you to (what you think is) session.ebaymotors.com, but right click, select properties and check out the actual page of:
http://session.ebaymotors.com@ebayupdates....biz/session.php
you're on ebayupdates.biz, the fake page.
After entering the username and pass it brings you to (what you think is) session.ebaymotors.com, but right click, select properties and check out the actual page of:
http://session.ebaymotors.com@ebayupdates....biz/session.php
you're on ebayupdates.biz, the fake page.