Language Selection

English French German Italian Portuguese Spanish

Phishers hack eBay

Filed under
Security

A flaw has been discovered on eBay’s website that would have allowed fraudsters to successfully redirect the sign-on process to a phishing site.

Reported by British anti-phishing outfit Netcraft, the clever scam apparently started with fraudsters sending e-mails asking eBay users to update their accounts. So far so normal, as such fake eBay e-mails are currently one of the phishing world’s persistent lines of attack.

Disarmingly, however, the link provided was genuine and led to the correct eBay sign-in page, signin.ebay.com. If users clicked on this, parameters embedded in the otherwise normal stream of characters at the end of the link actually redirected users away from the page after the sign-in page to a fake phishing page, via an open relay hosted at servlet.ebay.com.

The end result would have been that users gave away information allowing phishers to hijack their accounts, either as a way of laundering money or for launching fake auctions.

Full Article.

More in Tux Machines

today's howtos

Android Leftovers

University students create award-winning open source projects

In my short time working for Clarkson University, I've realized what a huge impact this small university is making on the open source world. Our 4,300 student-strong science and technology-focused institution, located just south of the Canadian border in Potsdam, New York, hosts the Clarkson Open Source Institute (COSI), dedicated to promoting open source software and providing equipment and support for student projects. While many universities offer opportunities for students to get involved in open source projects, it's rare to have an entire institute dedicated to promoting open source development. COSI is part of Clarkson's Applied Computer Science Labs within the computer science department. It, along with the Internet Teaching Lab and the Virtual Reality Lab, is run by students (supported by faculty advisers), allowing them to gain experience in managing both facilities and projects while still undergraduates. Read more

Linux 4.17-rc2

So rc2 is out, and things look fairly normal. The diff looks a bit unusual, with the tools subdirectory dominating, with 30%+ of the whole diff. Mostly perf and test scripts. But if you ignore that, the rest looks fairly usual. Arch updates (s390 and x86 dominate) and drivers (networking, gpu, HID, mmc, misc) are the bulk of it, with misc other changes all over (filesystems, core kernel, networking, docs). We've still got some known fallout from the merge window, but it shouldn't affect most normal configurations, so go out and test. Linus Read more Also: Upstream Linux support for new NXP i.MX8