The perpetrator's pals and business buddies

Another stunning example of why to never, ever use ebay and paypal!

A Boise, Idaho man has been caught and arrested for scamming on ebaY, using 400, that’s right,  400 fake Paypal accounts!

(more…)

From Reuters:

eBay Inc spokeswoman Kari Ramirez said the company “does not allow listings that graphically portray, glorify or attempt to profit from human tragedy or suffering,” and that the company was “deeply saddened by the Boston tragedy.”

ebaY search, by newly listed for 2013 Boston Marathon Medal, fresh as I compose this post

2013 Boston Marathon medal_ebay_eBay_newly_listed_20130418_460

Does it appear that once again ebaY says one thing, and does quite another?

(more…)

ebayitem290576761671480 Now I’ve seen everything! Lunch for eight winners with Julian Assange and Slovenian philosopher,Slavoj Žižek, to benefit Wikileaks auction on ebaY! Payment via Paypal!

This is almost too funny for words!

Gee whiz! Is the Wikileaks/Assange situation looking like a big money grubbing scam to anyone out there?

I notice this isn’t a ‘charity’ auction, with the official missionfish info and the ribbon etc BTW. I’m wondering whether this is an ebaY listing policy violation?

Update 06.29.2011

Ahem…   ^ as I was saying…

Not surprisingly, the cross scripting, xss,  and/or flash manipulation scam is alive and well on ebay, this time documented by a casual observer.  This has also been documented time and again by myself and others on Youtube BTW.

For those not aware, these ID stealing flaws, through careful research, have been shown to exist uncorrected on ebaY for as long as 11+ years now.

What’s even more alarming: you don’t need to actually sign in to any phake login page to have your credentials stolen, thanks to the cookie stealing variant of this hack.

Top that off with the fact that ebay’s own policy is to blame the user/victim.

Numerous comments at my youtube videos also indicate that victims are treated poorly and unprofessionally by ebaY’s customer service reps.

Important facts to consider when choosing online shopping or even surfing destinations.

 

Ebay scam redirect camper van

Uploaded by on Jun 8, 2011

hi, im not even a ebay member, but was looking at camper vans, if its to good to be true it probably is, dont be foolish and loose your details or money, thanks for watching. can you trust this site, i think not. thanks for watching. please remember if you do buy something like this you part with your money you will have no comeback, yes thats right, do your checks aa rac whatever, dont part with your money on the descriptions(important) alone on this site you could end up with a pile of poop. hpi only shows recorded accidents, not accidents repaired by other means, so get it checked. dont believe these lying scum.

 

Update: for whatever reason that video has been removed. Anyone wishing to see it can leave comment below and we shall make it available from the Mighty Cappnonymous Archives

Listen carefully around 3:16 and on.

by: spencerthayer

If you used PayPal to donate to Wikileaks recently your donation is in holding. I hope this conversation I had with the PayPal tech support helps you understand where you money is.

 

 

If you haven’t yet, now is a good time to Close Your Paypal Account.


Over last weekend, November 28, 2010, a rather large ebaY powerseller, pugster888 a TRS (Top Rated Seller)  had their account taken over and anywhere between around 57,000 to 70,000 (or more) fake high-end listings uploaded rapidly. The listings all contained an image of text urging would-be purchasers to contact the ‘seller’ at an off ebaY email address, a familiar MO.

(click the images for full page, reduced size views)

Pure pugster pwnage! ;p

Above: There were many many more listings than this. I did not have time to sit around and watch.

Below: One of the dozens if not hundreds of listings for this particular piano.

Incredible Deals! Brand New! Free Shipping! ebaY Buyer Protection!;p

For those not following along, this sort of thing has happened too many times to recount them all here. Literally for years now. Yet ebaY refers to these events as isolated cases.

Of course the first things which jump right out regarding this time is the stature, feedback level, and longevity of the seller/victim,

Screencaps here show the rate at which these listings were pumped in. Note the amounts of listings inserted per minute, as the search terms are ‘newly listed’, and the search modifiers set to not show the seller’s legit items.

Note the time on the above screencap showing 56,985 fake listings. (7:23 AM)
Here is the scene at 4:51 AM, with 27,833 results/listings.

ebaY is Hacked, cracked, modbotted and zombied! ;p

That’s 29,152 fake listings in high fraud rate categories in about 2 1/2 hours time.

Legit sellers do not have that ability with such items. There is a delay of several hours before items become visible on the site when listing items in certain ‘high fraud’ categories. ebaY at one time touted them as “fraud filters“, the magical new weapon to building site trust and platform safety after our friend Vladuz reamed ebay. That is indicative of “hacking” as opposed to simple “account take over” (ATO) or ‘phishing’.

I’m curious to know whether ebaY would blame them for giving away their passwords? Or accuse pugster888 of falling victim to phishing attacks and getting their database hacked, as ebaY and it’s employees have?

Would the seller/victim admit they fell for a phishing or spearphishing ploy? Is this just another firm indication that the troubles at ebaY are much deeper and darker than most are aware?

I never examined the listings for the presence of any malware or dubious scripting etc, but it would be a reasonable assumption they may have also carried an additional payload of some type. The hackers everywhere are more crafty and sophisticated than ever. The ‘blended threat‘ is more commonplace.

True to their Orwellian form, ebaY’s censors slithered out, and then back into the memory hole, taking with them ebaY forums threads regarding the event. Note the number 70K mentioned.

Finally, there were more victims with very similar listings: shakyahandicraft and 290401 (another TRS) to name a couple.
screencap of 290401 item
screencap of shakyahandicraft seller list

Over at the CAPP forum as well as on youtube, I have a more recent scams/hacking/hijackings and victims documented.

Regardless of whatever ebaY’s Minitrue department may claim, these events and worse are very commonplace.

Does ebaY seem like a safe, trustworthy, and/or honest platform to buy, sell or surf on?

by MegforMeg

October 04, 2010

Meet Bobblehead Meg! She’s billionaire with an atrocious voting record, a short temper, and a history of shady business deals who’s trying to spend her way into the Governor’s Mansion. Visit http://www.MegForMeg.com to learn more!

SING ALONG
Let me introduce you to Bobblehead Meg,
A poor billionaire who’s a real powder keg,
A former CEO who didn’t vote till oh-two,
Listen California she wants to be in charge of you!

Well good ole Meg was born into old money,
Got tired of Boston so she moved somewhere sunny,
Now says California’s always been her home state,
But she’s only lived here since nineteen ninety-eight.

Since she moved in she’s been the head of eBay,
And in that short time a lot of job’s she’s sent away,
Two out of five eBay jobs are overseas,
Wonder if she’ll outsource all the state employees?

So we all know Meg is a very rich lady,
But how she got her dough sometimes seems a bit shady,
Ten years ago when the rules were pretty lax,
She did a sketchy deal with the boys at Goldman Sachs!

Well Meg’s got a house in pretty Telluride,
And she wants to keep her view form each and every side,

She couldn’t buy out her neighbors so she figured out a plan.
Use eminent domain to gobble up the land!

Now Meg’s ego needs a boost so she’ll say anything to win,
So she came up with a scheme to simply buy her way in,
Spent a hundred million dollars just to be on your TV,
But I’m sorry dear old Meg you just don’t work for me!

WRITE YOUR OWN VERSE

Use the chords below to write your own verse and post it as a video response, tag it with “megformeg” – have fun!

—- verse —–
A, D, Bm, E,
A, D, Bm, E,
A, D, Bm, E,
D, E

—- chorus —–
D, A, E,
D, A, E,
D, A, E,
Fm, D, E

Paid for by the California Correctional Peace Officers Association

bonus reading:
Was California’s Bobblehead Election Rigged?

Update 10.05.2010

This video was originally posted at:

www. youtube.com/ watch?v=dvvyetH2uXQ

For whatever reason that was made ‘private’, and re-uploaded as above.

Please tweet and retweet the new url