RoadBikeReview.com's Forum Archives - General


Archive Home >> General(1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 )


Is this e-bay e-mail for real?(18 posts)

Is this e-bay e-mail for real?High Gear
Nov 24, 2003 3:05 PM
I don't feel comfortable sending my info to a link in the e-mail below. What do you guys think?

Dear eBay User,
During our regular update and verification of the accounts, we couldn't verify your current information. Either your information has changed or it is incomplete.
Please update and verify your information by signing in your account below
If the account information is not updated to current information within 5 days then, your access to bid or buy on eBay will be restricted.
Go to this link below:

http://cgi1.ebay.com/aw-cgi/eBayISAPI.dll?accVerify

***Please Do Not Reply To This E-Mail As You Will Not Receive A Response***

Thank you
Accounts Managent

As outlined in our User Agreement, eBay will periodically send you information about site changes and enhancements. Visit our Privacy Policy and User Agreement if you have any questions.

Copyright 2003 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc

--------------------------------------------------------------------------------

Announcements | Register | Safe Trading Tips | Policies | Feedback Forum | About eBay


Copyright © 1995-2003 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
Use of this Web site constitutes acceptance of the eBay User Agreement and Privacy Policy.
re: Is this e-bay e-mail for real?rogue_CT1
Nov 24, 2003 3:39 PM
I'd say with 99% certainty that this is a scam to gain access to your account. Then the fools will sell a bike using your good feedback rating and steal some poor souls money. Don't do it. Just go to ebay yourself and use MY EBAY and log into your account. Then change your password for safety. This should "reactivate" your account if there really was a problem and it will head off the potential for thiefs.
Nopejtolleson
Nov 24, 2003 3:45 PM
It is bogus. EBay will tell you that they never email for account passwords or credit card info. Ignore it.
I received something similiar...fasteddie
Nov 24, 2003 4:18 PM
to this a few months ago and reported it to eBay as a probable fraudulent email. Never got any feedback from eBay, and never had any problems with my eBay acct. I'd definitely report it to eBay and then ignore it.
re: Is this e-bay e-mail for real?russw19
Nov 24, 2003 4:20 PM
I am pretty sure that any page Ebay has that you need to log into to change any personal data will all start as https: and will be on a secure server.

Worst case scenario, ignore it for the specified 5 days and see if they lock you out.

I don't think they will....my credit card info that I had on file with them expired and I couldn't list items until I fixed it, but I could still buy from there in the mean time.

Russ
An increasingly common scam...The Walrus
Nov 24, 2003 4:52 PM
...I've been getting flooded with very authentic-looking e-mails supposedly from my ISP, using the logo, copyright mark, page design just like the real Earthlink website, with a message that my account information is expiring and that I should click on the link and supply my credit card number to verify my account. I confirmed my suspicions by calling Earthlink, and was told that they
i never
request a customer's info.

I think what was most worrisome about this was that the rep I spoke to indicated that Earthlink didn't seem that concerned that someone was using their identity to rip off people.
Yes, it is real. The e-mail does not request any of your ID.Spunout
Nov 24, 2003 5:19 PM
The link to a webpage is obviously the real site. The fake sites will use some other jumbled domain URL, some not even containing Ebay.

You will hurt nothing by clicking the link. You will notice that you will be taken to a secure server. Always check the URL in your browser, all Ebay servers usually run https://cgiX.ebay.com/... when on the secure connection.

If you don't want to believe this, log on to your ebay account and go you your information section of MY Ebay and you'll see that you need to update information.
Just a word of cautionDave Hickey
Nov 24, 2003 5:59 PM
I got a indentical looking email today. When I put my cursor on the link, it was a jumbled domain..
I just clicked the link in the message in this thread, and itSpunout
Nov 25, 2003 5:08 AM
took me to my Ebay page. All of my auctions and history are there. It sure looked legitimate to me.

Dave, try the link above, I was taken to cgi1.ebay.com with an 'input error' but it was a legit EBay page.
Yes, but..hudsonite
Nov 25, 2003 5:41 AM
You are correct. But if the original message was HTML, the link displayed and the actual link could be different. So on a cut and paste, you will see the 'display' link and not the link that was coded. The only way to know for sure is to look at the source code of the original message.

That is why these scams work so well. What you see looks good, but what is actually going to happen when you click, could be very different.
True then, we should see the original source code in the link.nmSpunout
Nov 25, 2003 6:22 AM
True then, we should see the original source code in the link.nmDave Hickey
Nov 25, 2003 6:41 AM
The email I received appeared exactly the same as the one above but my link re-routed to a fake site. The above email might be legit but I was just warning everyone that these emails might be a scam
Exactly...Dave Hickey
Nov 25, 2003 6:38 AM
I went to my Ebay accounts direcly from Ebays site and no updates were needed.
Who is 'Spunout' and why defend an e-mail that is risky????Greg B
Nov 25, 2003 7:09 AM
Ebay doesn't typically contact members with anything other than advertising. Why take any chances???

Greg
Bah! We've agreed that the original post did not reflect theSpunout
Nov 25, 2003 7:17 AM
changed coding of the URL behind the displayed text. When the text was pasted(cgi1.ebay.com), it treated the text as the URL. So, only the original poster knows to where the link points.
I got the same email. It's a scam nmDave Hickey
Nov 24, 2003 5:21 PM
re: Is this e-bay e-mail for real?aliensporebomb
Nov 25, 2003 3:48 AM
It's a scam allright.
re: Probably a scam, but outside chance it is realhudsonite
Nov 25, 2003 5:31 AM
If e-bay wanted to contact you, the e-mail would look exactly like what you posted. And they may have reasons to contact you at some time.

However, it is more likely to be a scam, just because scam artists want to contact you more than e-bay does.

There are ways you can check yourself and protect yourself.

If the e-mail message is an HTML formated message, view the source of the e-mail. If you know how to read HTML, look at the coding for the link that they are asking you to click on. If the link is coded differently than the display, it is a scam. In this case, forward the e-mail to e-bay so they can deal with it. If the link is coded the same as the display, it may be good. If the link is different, do not click on it. The 'bad guys' will be able to tell who has clicked and target you for future spam and scams.

When logging on to e-bay for any reason, always choose to use the secure logon option 'Secure sign in (SSL)' When you do this, you will be able to verify the certificate of the site you are working with (click on the yellow lock at the bottom of the page). The cert should always say, Issued to signin.ebay.com. Then check the certificate path. The little icons should be in a green outline and clearly show that the cert was issued at the root by Verisign/RSA.

If you don't see this, you are not connecting to e-bay and you are dealing with a scam artist.

As a matter of fact, you should always check the certificate(cert) of any secure site you are accessing. Scam artists target more than just e-bay. Make a habbit of always checking the certificate when accessing a site that has your password (like banks). Trust no one and verify every site that has something of value of yours.

As a side point, be careful with your passwords. Many people use the same passwords for multiple sites. Scamers use this fact to farm passwords and userid's from a non-critical site. If they are the same between sites, they have a greater chance of accessing your accounts on other sites like e-bay, amazon and banks.