Haven't updated this in a while because it would be easier to mention when ebay was NOT being hacked!

Let's start off with this:

eBay hack sends victim into debt collection nightmare

 ^ This lady had her dormant ebay account hijacked, whereupon sleazebay and their debt collectors came after her like rabid Hyenas to the tune of thousand$. If you have an ebay account you do not use, make sure to close it out or fix your bank account and credit card accounts so that ebay/paypal cannot withdraw from them. Ebay recently changed the billing language in their user agreement so as to allow then to deduct from your attached payment methods, as well as the collections parts of it.

Also, pretty easy to consider the ownership of the ebay forums by escort service/call girls and other spammers, as a hack job, since they are scooting right by whatever forum moderation filters may (or may not ) be in place. It's hilarious! They are even using intimidation tactics now to silence users who want a clean forums.

ebaY Community Forums Under Spam Attack

Now just a sample of the account take-overs, they have not missed a beat. Notice the high-end items, the amount of them, the rapidity with which they were listed, the immediacy of visibility.

Clearly the hackers have abilities to bypass whatever filters, policies etc which 'regular' ebay members do not have.

You will note the hacker's MO is basically the same, yet ebay is unable to defeat that challenge after all this time... hmmm

Tonight's seller/victim: professional_sports_authenticators

2013 Cannondale Scalpel 29ER 1

Victim/Seller's list in the Trading Cards category, where it looks like the bulk of the fraud listings were placed. Everything you see which is NOT a Trading card there is most likely fraud. Once again, hackers get around whatever category suggestions/restrictions ebaY may have.. Many times they are able to list duplicate high end items, in so-called "high fraud" categories, sometimes hundreds if not thousands... hmmm...

 ^ oops, forum resizes. Full page screencap available upon request

A development with the fraud listings which is troubling for a couple reasons.

First off, this one may not actually be hacked, but a dedicated account just opened by the member russbutl on May 8th 2013. Much like the one I posted the tweet about above. This particular item/identical photo etc has been used very recently for scam listings.

Second, notice there isn't any image or text with outside contact instructions in the listing?

Third, for whatever reason, the small "beacon" icon indicating the member/seller is brand new, while showing on the seller list and fb pages is absent on the listing page.

The paypal logo is flying as payment method, along with that glorious "rock solid guarantee" of ebay buyer protection.

What may well be the case here is that the scammer has a fake paypal account to take the payment on, or perhaps hijacked/hacked/taken over someone else's? At any rate, they seem ready willing and able to take paypal payment.

That seems to be a risky combination of variables for would-be buyers/bidders

oh yeah, can't let this go by without mention. ^ notice that entirely fake "people who bought this also bought..." showing up everywhere, even (or mostly) places/listings where nothing sold!. wow lmao

(see my tweetstream for some of the latest on the fake ebay and paypal accounts for sale problem. It may be more like pandemic than epidemic by now.)

There was also another similarly recently registered account, robcar234 ( 0 ) that had listings for items like that, but with the contact info image. Those are now removed, yet the account remains active/ in good standing w/e. Visual documentation available upon request.

Update:

bwhahaha I'm looking at this russbtl's listings. Now showing is a contact instructions image, with the text to contact robcar234 at g-mail. By adding to the listing, as opposed to revised.

Hilarious!

For whatever reason I guess they couldn't add the image to the original listing or revise it? technical issue, maybe just forgot or whatever?

Here's the url of that image

http://www2.picturepush.com/photo/a/12897645/1024/Picture-Box/5trtrh.jpg

The fake paypal (and ebaY) account issue still remains. Maybe not on these particular listings, but overall.  I can tell you there is a great deal of interest in them.

Yesterday evening I found yet another hijacked/ hacked account,  koulithegreek so I though I might just tweet it out to the head monkey in charge, as it were.

@Tallboy6 Trade with hacked Canadian ebaY sellers: Does your internet tax plan address that? http://bit.ly/11RYjCr  pic.twitter.com/FZbtzot5BT

Tonight I go look again and the listings are still there, only the hosting site where the hacker's images, including the contact me at bla blah has gone down. This batch had the name lany.ebay at you know where dot com as contact info.

I'm guessing that ebay needs those fvf's and the ad revenue. LoLz

Keep up the great work, ebaY.

Twitter / Cappnonymous: @Tallboy6 Trade with hacked ...
https://twitter.com/Cappnonymous/status/327249993503236098/photo/1 [more]

whooooooo-wheeeeee!

Now finding fake login pages, active javascript links in the user generated content. These did not auto-direct. You had to click to get to the phishing/login page.

Hacked ebaY Listings with Fake Login Page

Looks like ebay has already removed them but keep your eyes peeled. Or just avoid ebaY like your life depends on it. If yiu've been following along you know they're really slacking off in their responsibilities and obligations to the shoppers and the sellers.

 Besides here and the Cappnonymous wordpress blog, you can look on my tweetstream to see more carnage reported. You can find sad, disillusioned ebay members on the Trust & Safety forum also discussing similar things.

update: oops almost completely forgot, within a day or two of this event, similar fraud listings appeared with  links to contact forms where the scam-hackers wanted your phone numbers. It's updated at blog with screencaps etc.

Doc with a follow up video report on this Easter Weekend Hack job / ebaY Trust & Safety fail.

eBay Seller Anitahaveit2 Account Takeover Day 2

We all love ebaY! :roflmao:

Just a brief update to let folks know the hijackings continue...

I'm wondering whether the last glitch on ebay dealing with the seller limits and listings trashed don't have something to do with sleazebay attempting to correct the problem?

Lately there's been quite a few shooting star level members hijacked. LoLz! Still waiting for even one of them to say they gave away their passwords or fell for phishing, or for sleazebay's PR dept to say it.

As has been demonstrated for years, hackers have the abilty to bypass ebay's supposed 'fraud filters' and they still do, despite the sellers' limits. site unsafe; ebay lies!

hahahaha!

Here's tonight's victim, vintage_treats4u (4814)

Same ol' same ol' ...

Note the number of high fraud category items.

Maybe it's time for some more monumental hijackings of 100K items, with video coverage and so on?

Just another reminder that paypal is compromised. Spoof email addressed to the client's proper name. The hackers/phishers/whatever aren't guessing these names or getting them via psychic abilities.

I believe this may be one of ebaypal's biggest cheerleader/resident schills btw

Returned home today to find an email from Paypal for a payment for $199.74 to eBay seller PINZOO I never made. I didn't click and links but it was sent to may Paypal email address and addressed me by name. All email links were shown as in .ru though. No debit's were shown in Paypal though and no activity shown in my bank account. My guess is if I logged in to Paypal using any of the links in the email it would have attempted the charge. This one is real looking with fake links to the resolution center even.

Uploaded with ImageShack.us

Best thing you can do is never use paypal or ebay. If you have accounts, close them down and do whatever you need to in order to ensure they cannot draw from your bank accounts or credit cards. They are notorious for mysterious 'glitches' as well as being hacked, cracked and zombied!

ebay/paypal have a big hacking problem on their hands with fraudulent shipping labels to the Russian Federation and elsewhere in that area of the world. As usual, they're resorting to sleaze tactics to keep it hush-hush.

Victims are suffering great losses, having their lives turned upside down. Very serious shizzle.

HACKER USED MY EBAY ACCOUNT TO SHIP EXPRESS MAIL LABELS

Just another reminder that PayPal has been compromised, either by hackers or insiders. There's not any other reasonable or plausible explanation which exists to allow for paypal phishing emails to contain the client's real name etc. I suppose another possibility exists; that ebay/PP mangement are secretly selling your info to scammers because they need the money!

Sure, I'm laughing but it's no joke. Look at what all else they've been caught doing.

 (bold emphasis mine)

Paypal Spoof or Not

Aug 20, 2012 05:28 PM

I got an email supposedly from Paypal about "Limited Account Access" but I suspect to be a spoof.  It was in my spam folder, so already that was red flag. I'm familiar with spoofs with generic salutations like "Dear Paypal Member", but what's unusual is that this email addressed me by my full name.

 

Have you ever received a Paypal spoof that addressed you by your full name (or business name)? When I logged in to Paypal (through the actual website, of course), everything looked fine, and there was no notification requiring my attention. 

The email I believe to be a spoof did contain suspicious links requesting me to log in.  So, I'm wondering if nowadays it's NOT unusual for Paypal phishing emails to actually contain a person (or business') real name in the salutation. 

Uploaded with ImageShack.us

BTW, you may notice that the last poster advised to send the email to paypal's spoof address. That is a bogus meaningless, recommendation. Nothing but a pacifier without any real effect or solution to the real trouble. Reason being is that they ID anything & everything sent there as a spoof.

Don't believe me? try it with any known valid paypal email communication. Go ahead. No human being will ever see it. When they auto-bot-send back the notice telling you is was fraud/phishing, send that back to them too. A winner every time! LoLz!

As we should all realize by now, ebay and paypal do NOT act upon reports of fraud unless or until it somehow becomes an embarrassment to them in the electrosphere.

In case anyone is wondering, YES, the account hijackings are still ongoing. Found these in no  time flat. yet ebay with their bot-armies and filters can't. I wonder why that is?

victim: eddy51144

item: SIGNED FIRST RUN ESP KIRK HAMMETT OUIJA

I've highlighted the seller name in the composite screencapture.

Uploaded with ImageShack.us

But there was even more as I searched for similar items...

The victim: atek24

You may notice it's some of the very same exact items as several months ago when I produced a few reminder vids and uploaded to youtube.

Uploaded with ImageShack.us

I'm sure we could find thousands upon thousands of these hijacked listings/acounts each and every day, had we the time...

You'll notice this has literally been going on for years and they've never been able to stop it. I'm glad they have bots to detect unauthorized use of google checkout, and cash though LoL!

Never fear, PayPal fans! I see this happened too. Looks like a biggie.

Phishing sites using Extended Validation SSL

This may be the same person whom chimed in on the above paypal forums thread with post 156. The reported dollar amount, along with other details is the same.

Paypal Hacked!

On October 16, 2011 (Sunday), I decided to pay a couple of bills. I usually don't use the computer on Sunday, since I work on one all week. After paying the bills, I checked my email and quickly glanced over them. I noticed one from PayPal and I was about to chunk it in the trash when I noticed the words "Receipt for Your Payment to Gmarket". I thought it was spam mail, but I read it anyway. I noticed the amount of $834.77 and my heart rate started to sky rocket! "Who in the H3ll is Gmarket!", I screamed inside!

(continues with screencaptures and more info...

The account take-overs have increased by an exponential rate at ebay!

Seems to be targeting Top Rated Sellers. Still getting multiple listings of the same high-end and even ultra high-end artwork, fine collectibles etc right through with no delay. Hundreds at a time.

Haven't seen this many for quite some time now. Since uhmm.. who ever that one guy was putting the severe hurting ownage on them a while back.

LoLz

Here are a couple samples of the latest, but there have been many, many more

eBay Top Rated Seller THM37 Account Hijacked

ebay may have gotten a little overzealous here while removing the faked listings from victim displays-n-such

ebay TRS hacked! - Seller's legit items removed?

ebaY Top Rated Seller Hacked imacowboy77

The attack upon ebaY Top Rated Sellers continues...
with special guest appearances by John D "Bonzohoe", ebay's train driving mascot and Batboy

Find more at my youtube channel and at the ebaydirtylaundry channel.

Some of the other victim/seller IDs have included:

shefford-rambler

kobo.g

fashionmusic101

rarefinds_by_art

labouquinerieduplateau

marketplacemagic

That's a scant fraction of the ones I've documented thus far. I could upload a lot more screencaptures and/or vids had I the time.