eBay Spoof
Lately I’ve been getting a ton of those eBay spoof mails. You know the ones - some spammer sends you an email seemingly from eBay saying that you need to update your credit card info. Going to the link in the email isn’t taking you to eBay, but a spammer’s site that looks just like eBay so they can nab your info.
So I’ve done my duty as a good Web community citizen, and forwarded these spoof mails onto eBay (spoof@ebay.com). eBay has an auto-response that says:
Hello,
Thank you for writing to eBay regarding the email you received.
Emails such as this, commonly referred to as “spoof” or “phished” messages, are sent in an attempt to collect sensitive personal or financial information from the recipients.
The email you reported was not sent by eBay. We have reported this email to the appropriate authorities.
In the future, be very cautious of any email that asks you to submit information such as your credit card number or your email password. If you are ever concerned about an email you receive from eBay, open a new Web browser, type www.ebay.com into your browser address field, and click on the “site map” link located at the top the page to access the eBay page you need.
Uh…
First, yes, I know what a spoofed email is, which is why I sent the mail in the first place… and to spoof@ebay.com for Christ’s sake.
Secondly, thanks for the heads up that that eBay didn’t send this. The lawyers will be happy that you’ve covered that.
Third, thanks for the helpful hints. But where’s my “Thank you for doing your part to keep the Web a bit safer”??
eBay complete drops the ball with this message. In a few short (and poorly conceived) sentences, they blow an incredible opportunity to point out that eBay is a great community made up of helpful people just like me. Here’s the version I think they should be sending:
Hello,
Thank you very much for forwarding us the “spoof” email spam that you received. eBay is absolutely committed to ensuring your safety and security online. As such, we will immediately investigate the spoof claim that you have sent us.
If our investigation turns verifies that this mail is fraudulent, we will immediately work with appropriate law enforcement to shut down the Web site.
eBay has a [insert correct number] strong eBay community that strives to work together to create a wonderful experience for everyone. Spoof email like the one you pointed out hurts this effort, and thus hurts our community. You may not be a member of the eBay community, but your willingness to be a good digital citizen makes us think you’d be a good fit. Head over to eBay.com and introduce yourself!
OK, so clearly I’m no copywriter, but you get the point.
Related Entries
- Disappointed with Amazon
- AA Debacle: AA responds again
- Typepad downtime update mail
- 4 Lessons for improved blogger outreach
- eBay to buy Skype
6 Responses to “eBay Spoof”
And the sad part is that you probably would happily do so if you felt like your efforts were appreciated.
Good points about eBay’s response and “duh!” The term used for those “spoof” mails, by the way, is “phishing.”
I thought pretty much the same thing when ebay sent me that response. Unfortunately, Washington Mutual (I have my mortgage through them) sent me a very similar response when I forwarded a spoof. Ugh.
Notification of Limited Account Access - Security Measures ?
Can anyone explain e-mails with the subject of:
“Notification of Limited Account Access - Security Measures “
and links going to:
http://www.paypal.com.wscm.tk/us/webscr/Loginx.php
http://www.paypal.com.cgi-bin.wsst.tk/us/webscr/Loginx.php
These look like exactly what this blog is talking about!
Why are these pages still up and running, a week later ?
Background info:
Name: http://www.paypal.com.wscm.tk
Address: 216.81.70.151
OrgName: Vortech Inc.
OrgID: VTC1
Address: 106 S. Semoran Blvd.
City: Orlando
StateProv: FL
PostalCode: 32807
Country: US
NetRange: 216.81.64.0 - 216.81.79.255
CIDR: 216.81.64.0/20
NetName: VORTECH-BLK-2
NetHandle: NET-216-81-64-0-1
Parent: NET-216-0-0-0-0
NetType: Direct Allocation
NameServer: DNS.ANONYMOUS-SERVERS.COM
NameServer: DNS2.ANONYMOUS-SERVERS.COM
Feel free to repeatedly contact abuse@vortechhosting.com and support@vortechhosting.com regarding anything VORTECH. They host dozens of spammers, and are actually partially owned and operated by a couple of spammers in the process.
Sorry, the comment form is closed at this time.
Oh so true! I get so many SPOOF emails trying to be e-bay and after forwarding what seems like hundreds to spoof@ebay.com, and getting the same reply, which you are right, it makes one feel dumb, like we don’t know what a spoof is? Needless to say, now I delete the messages upon receipt. I could spend hours of my day forwarding those darn spoofs to e-bay.