OMG, this is the closest i ever come to having lost my life.
i’m so scared now i think the entire process over.
two days ago, i got this email from firstname.lastname@example.org
Dear eBay User,
To protect the security of your account, eBay employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the eBay system for unusual activity.
We recently have determined that different computers have logged onto your eBay account, and multiple password failures were present. We now need you to re-confirm your account information to us. If this is not completed we will be forced to suspend your account , as it may have been used for fraudulent purposes. We thank you for your cooperation in this manner. If the account information is not updated to current information within 5 days then, your access to bid or buy on eBay will be restricted.
go to this link below:
http://www.iebayi.net/memb/avncenter/BayISAPI.dll/6vxcvv5v565&f65f6f=5765w809022v……..geName=hUS.html NOT POSTED FOR YOUR PROTECTION
Thank you for your prompt attention to this matter. Please understand that this is a security measure meant to help protect you and your account.
We apologize for any inconvenience.
If you choose to ignore our request, you leave us no choise but to temporaly suspend your account.
eBay © Accounts Managent
These are the information the form asks: (screenshot of the form 1) (screenshot of the form 2)
Name (from credit card statements)
Address (from credit card statements)
Credit Card Number
(e.g. 1234 5678 1234 0000 for Visa)
Checking Account Number
Bank Routing Number
Credit Card Verification (CVV) Number
Bank Phone Number
Mother’s Maiden Name
Social Security Number
I was going to fill out the form but I didn’t have anything that would indicate my bank account number so I thought I’d get a check from home and do it today.
And today I’ve already filled out the entire form and was ready to submit but all the sudden I remembered getting email from ebay saying they will never ever ask for our account password. Then I noticed the url is not from http://www.ebay.com.
I then talked to a live representative on ebay who asked me to forward the email to email@example.com.
This is the reply I got about 2 seconds later:
Thank you for writing to eBay regarding the email you received.
Emails such as this, commonly referred to as “spoof” or “phished” messages, are sent in an attempt to collect sensitive personal or financial information from the recipients.
The email you reported was not sent by eBay. We have reported this email to the appropriate authorities.
In the future, be very cautious of any email that asks you to submit information such as your credit card numbers or passwords. If you are ever concerned about an email you receive from eBay, simply follow these steps:
1. Open a new Web browser and type http://www.ebay.com into your browser address field to go directly to the eBay site.
2. On eBay, click on the “My eBay” link at the top of the page and sign into your account.
3. Check the “My Messages” link located on the left side of the My eBay page. If an email affects your eBay account, it’s now in “My Messages.” Any email sent to your registered eBay email address from eBay or from another eBay member via eBay’s member-to-member communication system will also appear in “My Messages.”
Just remember, if you get an email regarding a problem with your account or that is requesting personal information, and the email looks like it is from eBay, please check My Messages first. If it’s not there, it’s a fake email.
If you still have any doubt about whether an email message is from eBay, please forward it to firstname.lastname@example.org immediately. Do not respond to it or click any of the links. Do not remove the original subject line or change the email in any way when you forward it to eBay.
If you have already entered sensitive personal information, financial information, or your password into a Web site based on a request from a spoofed email, you should take immediate action to protect your identity and all of your online accounts. We have developed an eBay Help page with valuable information regarding the steps you should take to protect yourself.
To review eBay’s new tutorial about Spoof Emails, please see the following Web page:
To help you better protect yourself from fake eBay and PayPal Web sites, we have developed a feature for the eBay Toolbar called “Account Guard.” Account Guard includes an indicator of when you are on an eBay or PayPal Web site or a known spoof (or “phishing”) site, buttons to report fake eBay Web sites, and a password notification feature that warns you when you may be entering your eBay password on an unverified site.
To learn more about the eBay Toolbar with Account Guard, please go to http://www.ebay.com, click on “Downloads” at the bottom of the page, and then click on the “eBay Toolbar” link.
We also recommend that you keep your browser, operating system, and virus protection software up to date. Check for updates at the “Windows Update” link on http://www.microsoft.com and scan your computer for viruses often.
Once again, thank you for alerting us to the spoof email you received. Your efforts help keep eBay a safe and fair place to trade.
Yes I do feel very stupid but I’ve been so used to giving out credit card information online for shopping purpose, I don’t think too much of it. If the spoof weren’t too greedy and wanted my passwords too I just might give it to them. OMG, that’s so fucking scary! My heart won’t stop pounding now I’m sober and thought over what if…..
Please learn from my experience and do not trust everything you get in your email!
I’m going to read all the tips ebay provides.