Language Selection

English French German Italian Portuguese Spanish

Phishers hack eBay

Filed under
Security

A flaw has been discovered on eBay’s website that would have allowed fraudsters to successfully redirect the sign-on process to a phishing site.

Reported by British anti-phishing outfit Netcraft, the clever scam apparently started with fraudsters sending e-mails asking eBay users to update their accounts. So far so normal, as such fake eBay e-mails are currently one of the phishing world’s persistent lines of attack.

Disarmingly, however, the link provided was genuine and led to the correct eBay sign-in page, signin.ebay.com. If users clicked on this, parameters embedded in the otherwise normal stream of characters at the end of the link actually redirected users away from the page after the sign-in page to a fake phishing page, via an open relay hosted at servlet.ebay.com.

The end result would have been that users gave away information allowing phishers to hijack their accounts, either as a way of laundering money or for launching fake auctions.

Full Article.

More in Tux Machines

Excellent: Android Ecosystem is Low-Margin, Fragmenting

What the figures really show is that Apple is price-gouging its customers, extracting unreasonable levels of profit by virtue of its monopoly. In the world of Android, by contrast, the fierce competition that exists between fungible manufacturers has driven down profit margins to razor-thin levels. Open source, and the level playing field that it creates, is a great way for maximising the benefits to customers, rather than companies. Read more

Open source empowers Sintra health centre

Open source tools used by ACES Sintra include content management system Wordpress, combined with the usual LAMP stack: the MySQL database management system, the Apache web server, Linux for the server host and the PHP web development scripting language. The combination is used for the public website, but also for several internal Intranet project and team sites. The organisation implements Wiki websites, mainly for the IT department but also to maintain a list of frequently asked questions and their answers. Read more

Pearl OS Could Be a Gem in the Making

Pearl OS is a revival of the discontinued Pear OS distro. Pearl picks up where Pear left off in early 2014. Pearl OS has two desktop versions: XFCE and MATE. Both are based on Ubuntu Linux distro version 14.04 Mini release. The two flavors of Pearl OS are customized to look and act like the OS X operating system. But Pearl is Linux and not OS X. This distro runs Debian-based Linux applications. It does not run OS X software or have actual OS X functions. Read more

An Everyday Linux User Review Of LXLE

I have been asked on a number of occasions to take a look at LXLE. I downloaded LXLE 14.04.1 a long time ago and for one reason or another it has taken until now to finally sit down and get to grips with it. LXLE stands for Lubuntu Extra Life Extension. The purpose of LXLE is to take the base Lubuntu distribution and enhance it so that all the features the average person requires is available from the outset. Read more