31st December 2003
Your eBay account could be suspended
text and a
wich opens a
Spoofed Web page/site?
forged eBay web
sign in page
Web page/site origin
Identity Theft method
form data is sent
on to scammers
via a web
and into an mol.com
Bank Email Scam
See our guide to
See our guides to
Your eBay account could be suspended -
31st December 2003
An email with an attachment claims that you will
be suspended - but its a scam ...
This spoof email (as eBay and Paypal like to call
these email scams) takes the form of a text email with a file
attachment (see images below).
We were concerned about the presence of a virus to
start with, but found that the attachment was actually a forged
eBay sign in page (which opens in your browser).
The email text urges you to use the file attachment
to sign in and therefore resolve some apparent 'problems' with your eBay
account. This is of-course, a complete fabrication, and opening the file
attachment will open the said fake sign in page.
The sign in page is constructed using eBay's own code
and graphics, so looks very convincing, but it is further coded to send
any data entered to the scammers via a form-mail
processing service provided by Canadian firm Netfirms (sslpowered.com).
We also found that the data was sent on to an email address at Mol Online
in Kuala Lumpur, Malaysia (firstname.lastname@example.org).
informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
Add your email address to our email alert service...
Tap into our Scam Alert service using your News Reader or Aggregator (including
Scam Alert News Feed
You can even put the latest alerts on your own web
is clear that once the username is in the possession of the fraudsters,
they would hijack that account. Hijacked accounts have frequently
been used to list high value consumer goods (including Digital Cameras
and Televisions) and bidders payments have been taken but no goods sent.
you have received this hoax email, please remember that it
is very common for these email scams to be redistributed at a
later date with only slightly different content or the same but with the
fake page(s) hosted by a different provider. Also, once
you have received one of these hoaxes, it is also common place to receive
more and usually a day or two after the first, although
not necessarily from the same apparent sender.
Take a good look at the following images, because
this hoax email scam may be coming to an inbox near you!
The Email ...