12th December 2003
your Ebay account
text and a
link to a forged
Spoofed Web page/site?
forged eBay web
page with web form
requiring eBay &
name & password,
name & address
details, credit or
debit card number
and PIN, etc
Web page/site origin
Identity Theft method
Web form information
is captured and
relayed to the
PHP script, while you
are sent to fake
Bank Email Scam
See our guide to
spoof email scams
See our guides to
Scam - 'Please confirm your Ebay account'
12th December 2003
Did an eBay email you to ask you to confirm your
eBay account? Well, its a scam ...
This spoof email (as eBay and Paypal like to call
these email scams) uses the suggestions that your billing records are
out of date and your account may be terminated to urge you to use
the 'click here' link provided.
That link would lead you to a forged
eBay web page which asks for your user name, password, credit or debit card number
and PIN, etc.
The components of this scam that you may not notice
are that, firstly the link sends you to http://accounts-ebay.info/.
And secondly, that this domain is frame forwarded to a page concealed
in www.projection.com's web space. This kind of forwarding is usually
invisible from internet users (although, if you watch the status bar
of the browser, you may notice the alternative web page address for a
brief moment while the page loads), and is commonly and legitimately
used by web publishers to display content from a different website while
retaining the same URL in the browser address bar.
The domain accounts-ebay.info has absolutely nothing
to do with eBay whatsoever, and is actually registered to an Individual
in Russia through Enom, a US registration provider.
informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
Add your email address to our email alert service...
Tap into our Scam Alert service using your News Reader or Aggregator (including
Scam Alert News Feed
You can even put the latest alerts on your own web
information submitted in that form would be sent to, or captured, by
the scammers using PHP script. No prizes for guessing what will most
likely happen then.
you have received this hoax email, please remember that it
is very common for these email scams to be redistributed at a
later date with only slightly different content or the same but with the fake
page(s) hosted by a different provider. Also, once you have received one of
these hoaxes, it is also common place to receive at least another one
and usually a day or two after the first, although not necessarily from
the same apparent sender.
Take a good look at the following images,
because this spoof email scam may be coming to an inbox near you!
The Email ...