digg

Facebook Connect Join Digg About

eBay's anti-phishing desk sucks

richi.co.uk I reported an eBay phishing attack last week. But eBay basically told me I'm an idiot because this email was in fact sent by eBay. But there's just no way that's true. If eBay can't tell the difference between their own messages and phishing, how's a poor consumer supposed to know?

Who dugg this? Made popular Dec 4, 2005

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

39 Comments

show profanity settings
expand all
  • bort, on 10/12/2007, -0/+8I would probably digg this if the actual phishing email, site, and eBay reply were included. As it stands now, there is no factual information or references, just a complaint.
  • stutterbug, on 10/12/2007, -0/+2What a bunch of whinging babies you are. http://www.google.com/search?q=phishing+ebaychristmas . Plenty of reports about this particular scam. Do a traceroute, you find out exactly what the guy says: the site, ebaychristmas.net is hosted on DSL accounts. The issue he is raising is eBay's response to his phishing report, not the phisher. The poster submitted the story, one must assume, because it adds to the overall impression of eBay that it is a crummy service. You can report the story as lame or old news if you don't like it. Requests for an un-digg button is retarded.
  • mattwilson247, on 10/12/2007, -0/+2Using eBay has become downright scary. You never know if what you are buying is a scam or what you just sold was paid for by a compromised account. I've been using eBay since 1997. It really has gone down the crapper in some areas. Maybe an alternative will emerge.
  • eclectro, on 10/12/2007, -1/+3Yup, they don't care. I've noticed this for years though. Because I am a longtime ebay user I receive phishing emails by the hundreds. Maybe there are just to many sites for them to go after.
    But don't you get the feeling that if it was a copyright/DMCA/bad press violation that it would go away immediately???

    Anyway, ebay needs regulating.
  • Murdock, on 10/12/2007, -0/+1Agreed. I would have liked to see the e-mails.
    No digg.
  • GODSUN, on 10/12/2007, -0/+1Chive, even if he show you the emails , how can you be sure they are real .

    As for the website , not giving the link is good thing . This website may be infected by virus or whatever .
  • GODSUN, on 10/12/2007, -0/+1Ebay is the scam central , Black market , scams , pishing , all the lame you want is there .
  • shigami, on 10/12/2007, -0/+1Hello,


    I am paid to run a small buisness's Ebay account, and I to have recieved those messages you speak of. Which makes me about as mad as this is Ebay's new feature to stop spam by image verification it is annoying and wastes my time especially when I have 15 messages or more every day
  • comrademikhail, on 10/12/2007, -0/+1As my mom is a constant ebay-er and asks me a bit about phising and such, I digg this. It's interesting to know that ebay is pretty much ignoring this site, and it's nice to know I'll be able to tell my mom about this site as well.
  • tifosiv122, on 10/12/2007, -0/+1I've reported 30-50 of these sites a year without issue. One time though, ebay charged me my final fees, and the next minute suspended my account for non-payment. I thought the e-mail was spam and sent it in, turned out to be real and they had to manually re-activate my account. Some sort of glitch.
  • mr_wej, on 10/12/2007, -0/+1No links, no emails, no references? Where's the anti-digg button. I've reported phising emails before with a quick response and action taken. This is a terrible post and is completely un-credible without any specific references included.
  • tynin, on 10/12/2007, -0/+1Aside from agreeing with most of you that there simply isn't enough info in the guys blog about it to verify, I would suggest not only reporting it to Ebay but the ISP hosting the phishing site as well. I work for a large webhost/ISP and it is quite common place for people who are not even our customers to email or call our support center to report scam sites, and we act on them quickly to insure people don't get ripped off. I would be suprised to find any webhost/ISP that didn't have something in there TOS/EULA that forbid that type of action. Also in my experience, someone who hosts a phishing site almost always bought there account with a stolen credit card, so it is very easy to get them shut down.
  • Trumpi, on 10/12/2007, -0/+1I went over to this ebaychristmas site and WebSense blocked it because it was phishing related. Looks like eBay is wrong about this one.
  • Armageddon3k, on 10/12/2007, -0/+1I've been to the site (check blog for the address) and I can clearly confirm that its a phishing site... (after entering false information for the login, it asks for your email address AND password for the account and then would link you back to the official UK ebay as logged in to not raise suspicion)... now that the ebay support staff did not see something as obvious as this, its really bad.
  • UserId, on 10/12/2007, -0/+1While I think that eBay customer support is better the most companies, Sometimes your going to get an idiot or someone that just doesn't want to work as hard to look into the problem and just sends you the wrong email.
  • inactive, on 10/12/2007, -0/+1Well this is what happens when you outsource your customer service operation to India! People over there just not being paid enough to care about your problems. The operation is probably not well managed with no QA whatsoever.
  • spotty, on 10/12/2007, -0/+1ya, I got one of those too saying my password was reset, and I laughed at the odd title of the message and just the overall lack of ebay images or anything looking professional and regarded it as a phishing email. I went to ebay later and infact my password had been reset by ebay :/

    eBay sucks at email
  • sexualpotatoes, on 10/12/2007, -0/+1if you go to the site he posted and click the .net passport login it says they no longer support .net login and you must use ebay account which looks like a very good sign that it is a fraud
  • lylei, on 05/03/2008, -0/+0I had my id stolen numerous times through ebay and an item i was selling, ebay said a buyer had a question on it, i got in touch with buyer through ebay and was introduced to a wonderful virus that compleatly wiped out every thing on my pc, with ebay you never know who or what you are getting into and they refuse to even help with the problems that originated with them, they even managed to clean out my paypal account.
  • dustydustmite, on 10/12/2007, -0/+0No Digg!
  • Chives, on 10/12/2007, -0/+0Some evidence is better than no evidence. How about a copy of the email that eBay sent? I doubt they called him an idiot... that was a harsh way for him to paraphrase the email. eBay was most likely very polite, but based on whatever information he provided (like maybe none - like in his blog?) then eBay would have nothing to work with... like us here at Digg.
  • inactive, on 10/12/2007, -0/+0dugg...
  • Chives, on 10/12/2007, -1/+1The author of the blog isn't even accepting comments on his website. As of this time, if you scroll to the bottom of his blog, there are "0" comments. However, I wrote a comment (actually posted a question asking him to copy and paste the email he received from the phisher). He has yet to let my comment be shown on his site. Makes me wonder. Nobody should digg this blog with the way the author has left it - not enough details. For example: What is the URL for the scam site? That alone would give his story more credibility.
  • m0bilitee, on 10/12/2007, -1/+1Paypal (an eBay company of course) is NO better--report phishing to them and they require you to change your password. Idiots:

    http://beatdown.blogspot.com/2005/05/paypal-thanks-for-wasting-my-time.html
  • bryan8m, on 10/12/2007, -0/+0More information plz.
  • scbysnx, on 10/12/2007, -1/+0"Where's the 'undig' button?" under your profile at the top click "0thello profile" and stories dugg should pop up then click undigg under the story you want to undigg
  • boicraig, on 10/12/2007, -1/+0same here...lol....

    but i do love my personalized google :D
  • richi, on 10/12/2007, -1/+0Story now updated with more details for your trolling pleasure
  • Workage, on 10/12/2007, -1/+0Sivart832z: Ditto
  • kevcowiffle, on 10/12/2007, -1/+0Is there anything in the new Terms of Service that prohibit digging your own blog? Because if there isn't, there should be.
  • saintwanker, on 10/12/2007, -1/+0ebay.
    the flea-market of the internet.
  • AdamWeeden, on 10/12/2007, -1/+0"Now that this has reached the front page people will dig it just because its here.. lame"

    Agreed, we should get a max of 10-20 diggs a day.
  • 0thello, on 10/12/2007, -1/+0Where's the 'undig' button?
  • peerk, on 10/12/2007, -1/+0My dad took me phishing once. We got 12 SSNs and 8 CC numbers.


    Keep your eyes open for my comedy CD!
  • Lamb, on 10/12/2007, -2/+0My RSS feed is ***** too, bah.
  • theWaterboy, on 10/12/2007, -2/+0---use the 'report a problem?' button up top to mark this post as spam-- because everyone is absolutely correct, no evidence equals no story (although it's possibly true).
  • Sivart832z, on 10/12/2007, -2/+0For some reason, this is (and has been for some time) showing as the latest story in my RSS feed. Seeing nobody else has said anything, I am guessing it is something limited to me, but I figured I would ask and see if anyone else might be experiencing the same thing.
  • weblava, on 10/12/2007, -3/+0indeed, deserves an undigg

    - George
    http://geekBB.com
  • Osiriscky3, on 10/12/2007, -3/+0***** EBAY

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.