A couple days ago I received one of the most most clever phishing scam e-mails I've ever received to-date. The e-mail was from "eBay.com", included PowerSeller insignia/logo, congratulated me on my ebay selling experience, and invited me to become an eBay PowerSeller. It went on to explain what an honor it was to be a PowerSeller and the prestige/respect such a designation grants a seller in the buyers' eyes, blah, blah, blah, etc.
All I had to do to be granted this much-to-be-desired PowerSeller status was to plug in my ebay user ID and password into the appropriate spots in the e-mail and return within the next 24 hours!?! Huh?!? It would seem obvious that ebay would HAVE that info and would not need it from me! All in all, it was a very authentic looking e-mail.
I forwarded the thing to spoof@ebay.com, and sure enough, received the standard form e-mail back indicating the e-mail did NOT originate from ebay! Is this what everybody (other than the poor souls that are fooled!) does -- forward the offending doc. to ebay? I've toyed with the idea of entering some bogus id/pw (something like "eatsh*tndie" or some other juvenile creation), but am unsure whether that approach has any detrimental ramifications. Any thoughts/opinions?
Original Post