Members Login
Username 
 
Password 
    Remember Me  
Post Info TOPIC: ebaY malware alert! Google Safe Browsing Tool


Top Poster

Status: Offline
Posts: 3757
Date:
ebaY malware alert! Google Safe Browsing Tool


ebaY malware alert! Google Safe Browsing Tool

 


Uploaded by cappnonymous on Oct 12, 2011

10-11-2011 - Google safe browsing tool showing ebay as infected with malware. Also finally acknowledging the malicious cross-scripting exploit, which has been long uncorrected. We also glance upon the recent report of yet another site specializing in the sale of phished hacked and/or stolen Paypal accounts

Google Safe Browsing diagnostic page for ebay.com: http://www.google.com/safebrowsing/diagnostic?site=http://ebay.com.

US-CERT Vulnerability Note VU#808921 http://www.kb.cert.org/vuls/id/808921

More Stolen Hacked Phished Paypal accounts found for Sale http://wp.me/p46z9-fI

More videos regarding the critical xss flaw found on ebaY: The longevity of the flaw revealed, alomng with ebay's (non) handling of the situation ebaY XSS Flaw Exploits: 11 Years of Hacking, Lies, Cover up & Denial http://www.youtube.com/watch?v=Mb8UcBfvU6o

This one by ebaymotorssucks demonstrates that smartphones are susceptible:

eBay Redirect Scam Caught On Screen Video! http://www.youtube.com/watch?v=gi-Om7kONNs

Here is a very recent live screen recording of the redirect flaw still on ebaY by youtube member thumper444 Ebay scam redirect camper van june 2011 http://www.youtube.com/watch?v=_V1knaBwG6w



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

 

It's getting worse! Now showing:

Malicious software includes 74 scripting exploit(s), 3 trojan(s).

Malicious software is hosted on 6 domain(s), including cosplaywig.com/, diabetic-wound.com/, 4safe.in/.

5 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including rubux.biz/, mat-esales.com/, auktionpower.com/.

googlesafebrowsingebayc.png

Uploaded with ImageShack.us

hacked, cracked, zombied, and pwned!



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

Just a reminder that ebaY is still loaded with malware and drive-by-downloads etc. Hardly a day has gone by when it wasn't found on the site. 

 

googlesafebrowsingdiagn.png

Uploaded with ImageShack.us

Think it's bad now? Just wait until Donahoe's glorious "project adfarmbay' is complete, as they've been infected by malware/spyware/adware from 3rd party ads before ... LoL!

 

 



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

It's getting worse and worse...

 

What is the current listing status for ebay.com?

This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 26 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 224752 pages we tested on the site over the past 90 days, 117 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-07-17, and the last time suspicious content was found on this site was on 2012-07-17.

Malicious software includes 10 trojan(s), 9 scripting exploit(s).

Malicious software is hosted on 23 domain(s), including charityairsupport.org/, 178.162.167.0/, confeccioneschurata.com/.

30 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including clazzio.us/, charityairsupport.org/, onmouseup.info/.

This site was hosted on 30 network(s) including AS11643 (EBAY), AS20940 (AKAMAI), AS4436 (AS).



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

She's still showing plenty of issues including scripting exploits. That means redirects.

 

But in case you missed it, they finally have been getting flagged by Firefox (with the "Attack site" page) too on at least a few stores/pages. Here's an example.



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

Welcome to tonight's CAPP forum inside joke.

 

 

.... ebay sent me an email about google safe browsing page....


rotflmao!!!!

Why don't you just post an announcement? bwhahahahahhaha!

You know what sleazebaypal?
There aren't even words suitable to describe you anymore. I could try to make some up ... How about... uh... bleeping blimzapped festercluck? lmao

No, I don't think even that says it all. Not even close.

There's likely a simple term which I'm laughing too hard to recall, but it's still music to my ears.





I trust everyone understands what happens when we use a chicken to measure it.

 

Oh yes, and of course google safe browsing is still showing exploits on ebay. ;p



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

LoL! I see the problem hasn't gone away. Not by a longshot. Someone got scammed for $8500 and the paid shills are tripping over themselves to defend sleazebay, which is still as infected and unsafe as ever.

 

Whats Your Chance Of Getting Infected By eBay Malware?

 

^ Click through to the discussion bds...

 

edit: This part of the above linked post really irks me

 

...    Liveworld, eBays forum provider and moderator, did remove a post last night below the above that claimed this website was loaded with spyware. Thats a classic shill tactic to scare others. eBay wants you to feel safe shopping on their website, and Im sure they dont want any of their shoppers visiting this site.       ...

 

Yes, ^ they've made numerous wholly false allegations to that extent with regards to any and all sites/personalities/content which/whom have ever criticised or exposed sleazebay.

That may be one (of many) reasons why they have such die-hard critics and enemies.

 

 

 







-- Edited by budnonymous on Monday 18th of February 2013 12:39:11 PM

__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

What is the current listing status for ebay.com?

This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 38 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 84692 pages we tested on the site over the past 90 days, 523 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-03-22, and the last time suspicious content was found on this site was on 2013-03-22.

Malicious software includes 21 trojan(s), 4 exploit(s).

Malicious software is hosted on 170 domain(s), including quickerchief.com/, mistersiam.com/, 24-verygoods.ru/.

80 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including evergl.com/, lododesign.com/, mahtab.tv/.

This site was hosted on 36 network(s) including AS11643 (EBAY), AS4436 (AS), AS2914 (NTT).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, ebay.com appeared to function as an intermediary for the infection of 18 site(s) including stores.ebay.com/HOTRIDEWHEELS_18-TIRES_W0QQfsubZ18/, ownster.com/, stores.ebay.com/HOTRIDEWHEELS_18-TIRES_W0QQcolZ4QQdirZ1QQfsubZ18QQftidZ2QQtZkm/.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

Next steps:

Updated 3 hours ago


__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

05-04-1013

https://www.google.com/safebrowsing/diagnostic?site=http://ebay.com

 

What happened when Google visited this site?

Of the 92911 pages we tested on the site over the past 90 days, 355 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-05-04, and the last time suspicious content was found on this site was on 2013-05-03.

Malicious software includes 22 trojan(s), 8 exploit(s).

Malicious software is hosted on 73 domain(s), including quickerchief.com/, 24-verygoods.ru/, jewelryatoz.com/.

65 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including mahtab.tv/, lododesign.com/, truck-fever.com/.

This site was hosted on 33 network(s) including AS11643 (EBAY), AS4436 (AS), AS20940 (AKAMAI).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, ebay.com appeared to function as an intermediary for the infection of 20 site(s) including stores.ebay.com/HOTRIDEWHEELS_18-TIRES_W0QQfsubZ18/, stores.ebay.com/HOTRIDEWHEELS_18-TIRES_W0QQcolZ4QQdirZ1QQfsubZ18QQftidZ2QQtZkm/, ebay.be/.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

And in case you haven't seen it yet, Paypal has also been showing infected for a while now:

Check the page yourself: https://www.google.com/safebrowsing/diagnostic?site=http://www.paypal.com

Do you trust ebay and paypal to alert you to obvious critical safety issues?

 

 

What is the current listing status for www.paypal.com?

This site is not currently listed as suspicious.

What happened when Google visited this site?

Of the 4402 pages we tested on the site over the past 90 days, 50 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-05-03, and the last time suspicious content was found on this site was on 2013-05-02.

Malicious software includes 48 trojan(s), 36 exploit(s).

Malicious software is hosted on 9 domain(s), including 91.213.126.0/, rgpsales.com/, delveaudio.com/.

8 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including rgpsales.com/, ccselecta.it/, delveaudio.com/.

This site was hosted on 24 network(s) including AS4436 (AS), AS20940 (AKAMAI), AS2914 (NTT).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, www.paypal.com did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

 

Google Safe Browsing diagnostic page for www_paypal_com_20130504_640ce.png

 



Attachments
__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

And once more...

https://www.google.com/safebrowsing/diagnostic?site=http://ebay.com

(additional emphasis mine)

Safe Browsing

Diagnostic page for ebay.com

What is the current listing status for ebay.com?

This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 70 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 95988 pages we tested on the site over the past 90 days, 196 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-07-07, and the last time suspicious content was found on this site was on 2013-07-02.

Malicious software includes 22 trojan(s), 9 exploit(s), 1 scripting exploit(s).

Malicious software is hosted on 47 domain(s), including jewelryatoz.com/, 24-verygoods.ru/, wearelegendary.com/.

36 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including mahtab.tv/, two2readblog.com/, timedesign.de/.

This site was hosted on 35 network(s) including AS11643 (EBAY), AS4436 (AS), AS2914 (NTT).

(more at poage)

 

And don't forget, paypal looks to be infected too. just change the google safe browsing url to paypal.com ^

Now shows a mere 115 trojans. LoL!

 

Just to remind everyone [again] about past (and typical) ebaY security achievements...

pay careful attention...

Malware was served up from ebay's own servers/pages for many months. All along the way there were reports of the malware and reassurances by ebay staffers. People who chose to trust them got owned.

Red Condor Warns Of Fake eBay Security Alert

 



__________________

Exposing the sleazery of ebaY and PayPal

 



Top Poster

Status: Offline
Posts: 3757
Date:

After a short while with little to no detections, ebaY again shows issues:

(Ahem, Paypal too )

 

What is the current listing status for ebay.com?

This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 9 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 77648 pages we tested on the site over the past 90 days, 11 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-10-17, and the last time suspicious content was found on this site was on 2013-10-17.

Malicious software includes 20 exploit(s), 17 trojan(s).

Malicious software is hosted on 14 domain(s), including wearelegendary.com/, hilason.com/, 4safe.in/.

4 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including mat-esales.com/, sunsetwebdesign.com/, boutiquevalue.com/.

This site was hosted on 34 network(s) including AS11643 (EBAY), AS31377 (AKAMAI-BOS), AS16625 (AKAMAI-ASN1)

 

Google Safe Browsing diagnostic page for ebay_com_20131017_640ce.png 

 

See for yourself: paste in new tab or window

https://www.google.com/safebrowsing/diagnostic?site=http://ebay.com



Attachments
__________________

Exposing the sleazery of ebaY and PayPal

 

Page 1 of 1  sorted by
Quick Reply

Please log in to post quick replies.

Tweet this page Post to Digg Post to Del.icio.us


Create your own FREE Forum
Report Abuse
Powered by ActiveBoard