Skip to main content

A couple days ago I received one of the most most clever phishing scam e-mails I've ever received to-date. The e-mail was from "eBay.com", included PowerSeller insignia/logo, congratulated me on my ebay selling experience, and invited me to become an eBay PowerSeller. It went on to explain what an honor it was to be a PowerSeller and the prestige/respect such a designation grants a seller in the buyers' eyes, blah, blah, blah, etc.

All I had to do to be granted this much-to-be-desired PowerSeller status was to plug in my ebay user ID and password into the appropriate spots in the e-mail and return within the next 24 hours!?! Huh?!? It would seem obvious that ebay would HAVE that info and would not need it from me! All in all, it was a very authentic looking e-mail.

I forwarded the thing to spoof@ebay.com, and sure enough, received the standard form e-mail back indicating the e-mail did NOT originate from ebay! Is this what everybody (other than the poor souls that are fooled!) does -- forward the offending doc. to ebay? I've toyed with the idea of entering some bogus id/pw (something like "eatsh*tndie" or some other juvenile creation), but am unsure whether that approach has any detrimental ramifications. Any thoughts/opinions?
Jabbergah  
Original Post

Replies sorted oldest to newest

Even viewing a phishing email can have ramifications as it is possible to tell when a particular image is viewed. Thus, giving each phishing email's image a unique ID and linking it to an email address allows the sender to confirm that an address is active. Even viewing an email in preview pane lets them know. And then you're on the list - aaaargh!

R2

Add Reply

Post
×
×
×
×
Link copied to your clipboard.
×