WARNING - PHONEY EBAY E-MAIL

I was getting the Paypal scam for about two weeks, funny thing was each one
told me i had 5 days to comply and bring my account up to date,
Shucks I never had an account, they did this during the x mas shopping
season, stopped now.
I have also been getting a lot of e-mails from these assholes that think i
fell of a turnip truck yesterday trying to get me to be their freind with
millions in the bank Bla bla bla.
I return their message and tell them as soon as the FBI gives me the okay
i'll call them.
after about tem of these and a couple that the reply said F%$# YOU ASSHOLE
they stopped
For now anyway, I'm Sure "They'll Be Back "


"T." <[email protected]> wrote in message
news:[email protected]...
> I like to bid on eBay at times, and I know some of you do also, and
> some sell there.
>
> Earlier this evening, I got the below e-mail. I was a bit
> suspcious, first because the link asked me to log on. So, I checked and
> it hadn't gone directly to eBay. Went back and checked closer, and
> found some suspicious wording.
>
> I reported it to [email protected] per their instructions, and asked
> it it had actually came from them. As it turned out, no, it did not
> come from them. Below is a copy of the phoney e-mail I got. If you get
> a copy, you should report it to eBay.
>
>
> Saved e-mail message
>
> From: [email protected] Date: Thu, Jan 1, 2004, 8:54pm (EST+5) To:
> [email protected] Subject: eBay Account Security Measures
> Hello,
> Dear member,
> eBay Security Department have investigated logins from ip 212.156.4.69
> and 212.156.4.68 with your account.
> The Department reported that they are worried that your account might
> have been stolen and some one may be access your eBay ID and password.
> It might have been captured by spy software that some one put in your
> machine,So...
> We put your account under security mode (not restricted) ,
> and you should follow some steps to secure your account.
> 1- You should update your account in our SSL server to prevent it from
> to be remotely accesed by anyone(Secure Accounts Server) click the link
> to update http://cgi.ebay.com/ws/eBayISAPI.dll?Verify&your?account
> 2- Wait 24 hours to detecting and routing of remote logins machine and
> you will be e-maild from [email protected] to continue using our service.
> 3-Try to re-setup your operating system and delete all files you suspect
> in.
> With Best Wishes,
> eBay Security Department Assistant,
> Richard Michael.
>
>
> JOAT
> Success consists of going from failure to failure without loss of
> enthusiasm.
> - Sir Winston Churchill
>
> Life just ain't life without good music. - JOAT
> Web Page Update 1 Jan 2004.
> Some tunes I like.
> http://community-2.webtv.net/Jakofalltrades/SOMETUNESILIKE/
>

JOAT writes:

> I like to bid on eBay at times, and I know some of you do also, and
>some sell there.
>
> Earlier this evening, I got the below e-mail. I was a bit
>suspcious, first because the link asked me to log on. So, I checked and
>it hadn't gone directly to eBay. Went back and checked closer, and
>found some suspicious wording.
>
> I reported it to [email protected] per their instructions, and asked
>it it had actually came from them. As it turned out, no, it did not
>come from them. Below is a copy of the phoney e-mail I got. If you get
>a copy, you should report it to eBay.
>
>
>Saved e-mail message
>
>From: [email protected] Date: Thu, Jan 1, 2004, 8:54pm (EST+5) To:
>[email protected] Subject: eBay Account Security Measures
>Hello,
>Dear member,
>eBay Security Department have investigated logins from ip 212.156.4.69
>and 212.156.4.68 with your account.
>The Department reported that they are worried that your account might
>have been stolen and some one may be access your eBay ID and password.
>It might have been captured by spy software that some one put in your
>machine,So...
>We put your account under security mode (not restricted) ,
>and you should follow some steps to secure your account.
>1- You should update your account in our SSL server to prevent it from
>to be remotely accesed by anyone(Secure Accounts Server) click the link

snip

From the syntax, it sounds like our Nigerian buddies are at it again.

Charlie Self
"If you want to know what God thinks of money, just look at the people he gave
it to. " Dorothy Parker

http://hometown.aol.com/charliediy/myhomepage/business.html

[email protected] (T.) wrote in message news:<[email protected]>...
> I like to bid on eBay at times, and I know some of you do also, and
> some sell there.
>
> Earlier this evening, I got the below e-mail. I was a bit
> suspcious, first because the link asked me to log on. So, I checked and
> it hadn't gone directly to eBay. Went back and checked closer, and
> found some suspicious wording.

It's called "phishing". Check out the Federal Trade Commission's notice:
http://www.ftc.gov/opa/2003/07/phishing.htm

Dick Durbin
Tallahassee

Larry C in Auburn, WA wrote:

> birthdate, and credit card number. BTW, it isn't just fake eBay emails.

My boss called me a bit back. He knows more about castrating bulls and
turning sheep vaginas right side out than he does about computer stuff, so
he comes to me frequently for help dealing with his teeniebopper AOL/ICQ
etc. daughter.

His daughter got a message from "AOL Account Management" or some such, with
some blather. It requested bank account numbers, credit card numbers, etc.
etc. etc. His daughter got this, let his wife read it. His wife got out
her purse and filled in all the blanks. IN PLAIN TEXT!

I had to tell him the bad news.

He smashed her computer with a sledge hammer after that.

Luckily, he got all his accounts changed before anyone could make use of the
information. I'm not sure if anything ever came of it as far as using
attempts to access the old account to track the perps.

--
Michael McIntyre ---- Silvan <[email protected]>
Linux fanatic, and certified Geek; registered Linux user #243621
http://www.geocities.com/Paris/Rue/5407/

I have played a little with linux. thing is, I need to use autocad and
I like to play with adobe products. while I enjoy tinkering with
operating systems, I can't justify the time and I don't really want to
emulate windows under another OS.



On Fri, 02 Jan 2004 18:19:34 GMT, EvoDawg
<[email protected]> wrote:

>Bridger wrote:
>
>> I use as little microsoft code as I can and still run windows.
>>
>> for a browser I use mozilla:
>> www.mozilla.org
>>
>> for usenet I use agent
>> www.forteinc.com
>>
>> for email I use eudora
>> www.eudora.com
>>
>>
>
>I use none! I wouldn't be surprised if Microsoft themselfs hasn't used this
>tactic for collecting some interestion information.
>
>For a browser I use Konqueror and sometimes Mozilla
>
>For usenet I use Knode
>
>For email I use Kmail
>
>Rich 8~)

Bridger wrote:

> I use as little microsoft code as I can and still run windows.
>
> for a browser I use mozilla:
> www.mozilla.org
>
> for usenet I use agent
> www.forteinc.com
>
> for email I use eudora
> www.eudora.com
>
>

I use none! I wouldn't be surprised if Microsoft themselfs hasn't used this
tactic for collecting some interestion information.

For a browser I use Konqueror and sometimes Mozilla

For usenet I use Knode

For email I use Kmail

Rich 8~)
--
"You can lead them to LINUX
but you can't make them THINK"

On Fri, 02 Jan 2004 19:33:43 -0500, Silvan
>My boss called me a bit back. He knows more about castrating bulls and
>turning sheep vaginas right side out than he does about computer stuff, so
>he comes to me frequently for help dealing with his teeniebopper AOL/ICQ
>etc. daughter.
>
>His daughter got a message from "AOL Account Management" or some such, with
>some blather. It requested bank account numbers, credit card numbers, etc.
>etc. etc. His daughter got this, let his wife read it. His wife got out
>her purse and filled in all the blanks. IN PLAIN TEXT!
>
>I had to tell him the bad news.
>
>He smashed her computer with a sledge hammer after that.

Well that was certainly an intelligent move to rectify a problem. Is
that his typical response?

It's a good thing that he wasn't around when the first wheel was
invented. If it had run over his foot, even luxury autos would give a
bumpy ride with square tires.

I use as little microsoft code as I can and still run windows.

for a browser I use mozilla:
www.mozilla.org

for usenet I use agent
www.forteinc.com

for email I use eudora
www.eudora.com







On Fri, 2 Jan 2004 14:47:28 +0000 (UTC), [email protected] (Henry E
Schaffer) wrote:

>In article <[email protected]>,
>T. <[email protected]> wrote:
>> ...
>> Earlier this evening, I got the below e-mail. I was a bit
>>suspcious, first because the link asked me to log on. So, I checked and
>>it hadn't gone directly to eBay. Went back and checked closer, and
>>found some suspicious wording.
>> ...
>
> There is a *lot* of phony e-mail which takes advantage of a
>(mis)feature of Internet Explorer. One can trick Internet Explorer into
>showing a URL in the "Address" line (near the top) and actually be at a
>different URL/location. (Maybe it is a bug, not a feature?)
>
> So, e.g., you click and go to something that says www.ebay.com, but
>you are actually at some other site controlled by the spoofer, so when
>you put in the requested information (name/addr/SSN/credit card/...) it
>is going to the spoofer, not to ebay.
>
> If you want to see a demo of this - look at
>http://www.cals.ncsu.edu/gn/ex/spoof.html with your copy of IE, and
>click on the button. Then compare where the address says you are,
>versus what is in the window.
>
> Most other browsers either won't work in this way, or will show the
>entire URL on the address line - and so you can see where you actually
>are.

In article <[email protected]>,
T. <[email protected]> wrote:
> ...
> Earlier this evening, I got the below e-mail. I was a bit
>suspcious, first because the link asked me to log on. So, I checked and
>it hadn't gone directly to eBay. Went back and checked closer, and
>found some suspicious wording.
> ...

There is a *lot* of phony e-mail which takes advantage of a
(mis)feature of Internet Explorer. One can trick Internet Explorer into
showing a URL in the "Address" line (near the top) and actually be at a
different URL/location. (Maybe it is a bug, not a feature?)

So, e.g., you click and go to something that says www.ebay.com, but
you are actually at some other site controlled by the spoofer, so when
you put in the requested information (name/addr/SSN/credit card/...) it
is going to the spoofer, not to ebay.

If you want to see a demo of this - look at
http://www.cals.ncsu.edu/gn/ex/spoof.html with your copy of IE, and
click on the button. Then compare where the address says you are,
versus what is in the window.

Most other browsers either won't work in this way, or will show the
entire URL on the address line - and so you can see where you actually
are.
--
--henry schaffer
hes _AT_ ncsu _DOT_ edu

You should never follow these links to log into your account and of course
never give all the info they want to "verify your account" like your SSN,
birthdate, and credit card number. BTW, it isn't just fake eBay emails.
I've gotten several different versions, in fact I just got a similar one
from a credit card I don't even own, but then when they just blanket the
world with these emails they'll miss on some and hit on lots of others.
--
Larry C in Auburn, WA

"T." <[email protected]> wrote in message
news:[email protected]...
> I like to bid on eBay at times, and I know some of you do also, and
> some sell there.
>
> Earlier this evening, I got the below e-mail. I was a bit
> suspcious, first because the link asked me to log on. So, I checked and
> it hadn't gone directly to eBay. Went back and checked closer, and
> found some suspicious wording.
>
> I reported it to [email protected] per their instructions, and asked
> it it had actually came from them. As it turned out, no, it did not
> come from them. Below is a copy of the phoney e-mail I got. If you get
> a copy, you should report it to eBay.
>
>
> Saved e-mail message
>
> From: [email protected] Date: Thu, Jan 1, 2004, 8:54pm (EST+5) To:
> [email protected] Subject: eBay Account Security Measures
> Hello,
> Dear member,
> eBay Security Department have investigated logins from ip 212.156.4.69
> and 212.156.4.68 with your account.
> The Department reported that they are worried that your account might
> have been stolen and some one may be access your eBay ID and password.
> It might have been captured by spy software that some one put in your
> machine,So...
> We put your account under security mode (not restricted) ,
> and you should follow some steps to secure your account.
> 1- You should update your account in our SSL server to prevent it from
> to be remotely accesed by anyone(Secure Accounts Server) click the link
> to update http://cgi.ebay.com/ws/eBayISAPI.dll?Verify&your?account
> 2- Wait 24 hours to detecting and routing of remote logins machine and
> you will be e-maild from [email protected] to continue using our service.
> 3-Try to re-setup your operating system and delete all files you suspect
> in.
> With Best Wishes,
> eBay Security Department Assistant,
> Richard Michael.
>
>
> JOAT
> Success consists of going from failure to failure without loss of
> enthusiasm.
> - Sir Winston Churchill
>
> Life just ain't life without good music. - JOAT
> Web Page Update 1 Jan 2004.
> Some tunes I like.
> http://community-2.webtv.net/Jakofalltrades/SOMETUNESILIKE/
>

EvoDawg wrote:

>> I use as little microsoft code as I can and still run windows.

> I use none! I wouldn't be surprised if Microsoft themselfs hasn't used
> this tactic for collecting some interestion information.

The only Microsoft code I run is the microcode inside this keyboard. I hope
it doesn't come back to haunt me some day. :)

--
Michael McIntyre ---- Silvan <[email protected]>
Linux fanatic, and certified Geek; registered Linux user #243621
http://www.geocities.com/Paris/Rue/5407/

T. wrote:

> I like to bid on eBay at times, and I know some of you do also, and
> some sell there.
>
> Earlier this evening, I got the below e-mail. I was a bit
> suspcious, first because the link asked me to log on. So, I checked and
> it hadn't gone directly to eBay. Went back and checked closer, and
> found some suspicious wording.
>
> I reported it to [email protected] per their instructions, and asked
> it it had actually came from them. As it turned out, no, it did not
> come from them. Below is a copy of the phoney e-mail I got. If you get
> a copy, you should report it to eBay.
>
>
> Saved e-mail message
>
> From: [email protected] Date: Thu, Jan 1, 2004, 8:54pm (EST+5) To:
> [email protected] Subject: eBay Account Security Measures
> Hello,
> Dear member,
> eBay Security Department have investigated logins from ip 212.156.4.69
> and 212.156.4.68 with your account.
> The Department reported that they are worried that your account might
> have been stolen and some one may be access your eBay ID and password.
> It might have been captured by spy software that some one put in your
> machine,So...
> We put your account under security mode (not restricted) ,
> and you should follow some steps to secure your account.
> 1- You should update your account in our SSL server to prevent it from
> to be remotely accesed by anyone(Secure Accounts Server) click the link
> to update http://cgi.ebay.com/ws/eBayISAPI.dll?Verify&your?account
> 2- Wait 24 hours to detecting and routing of remote logins machine and
> you will be e-maild from [email protected] to continue using our service.
> 3-Try to re-setup your operating system and delete all files you suspect
> in.
> With Best Wishes,
> eBay Security Department Assistant,
> Richard Michael.
>
>
> JOAT
> Success consists of going from failure to failure without loss of
> enthusiasm.
> - Sir Winston Churchill
>
> Life just ain't life without good music. - JOAT
> Web Page Update 1 Jan 2004.
> Some tunes I like.
> http://community-2.webtv.net/Jakofalltrades/SOMETUNESILIKE/

Why bother, Ebay won't do anything about it. Their customer service is about
as useful as AOL's was. They could careless about your problems. Sometimes
I think they really don't have any real people working at these places.
Just a bunch of mainframes and servers.

Rich
--
"You can lead them to LINUX
but you can't make them THINK"