12-05-2006, 12:01 PM
[quote author=stardust link=topic=3775.msg35106#msg35106 date=1165297397]
The ebay and pp phishing emails are so obvious they're laughable. Every time I make a sale, I get them from ebay and paypal -- just like clockwork. When I signed up with ecrater, I got them, too. Selling on Craig's list, or anywhere else, for that matter, will also spawn phishing emails. These phishers can somehow zap into cyberspace and harvest these email addresses. It's a problem everywhere, not just ebay, pp and wp.Â
Just delete 'em and forget 'em and chill.
And regarding the ebay toolbar? There's an article on TT here somewhere that says it's the worst of the lot and not to be trusted. You still have to use your own instinct and knowledge...
[/quote]
I CONCUR. I receive phish emails on a regular basis and can easily spot all of them, although some of them are very sophisticated and look very real and believable to the untrained eye. One of the best ways to spot them is to use a unique (unpublished anywhere) email address and name for your PayPal and eBay financial and personal accounts than you do for other accounts and eBay correspondence. By doing this, you can spot the phish just by looking at which email address the phish was sent to or the name to whom it is addressed. Or sometimes there will be no email address in the "to" field -- also a phish.
I have the eBay toolbar, and don't know if it matters or not, but it doesn't hurt to have it, so I do. I certainly wouldn't trust it -- nor would I trust eBay to identify a phish. eBay often claims emails are phishing when they are not and visa versa. My motto is to NEVER assume ANY email is legit, without first checking it out. That is, if the email is personal correspondence from a site-member, it will be in the site's inbox and can be accessed from there. If the email is a marketing or promo announcement, it will be somewhere advertised in the site itself, e.g. eBay will, from time to time, run contests or will advise of promotions for store owners and power sellers through emails and provide links to participate. If it's real, it will also be advertised on the site itself and can be accessed that way. IN SHORT, there is virtually NO NEED to click on any email link, unless you want to. This won't prevent anybody from receiving phish emails, but will help keep you from being the victim of a phish attempt.
Also REGULARLY change passwords to sensitive sites, like PayPal, other banks, eBay, etc., whether you need to or not, and IMMEDIATELY change if you suspect anything. Whether Ray (or someone close to him) is, or is not, gaining access into a user's IP deliberately and with malice is a subject of conjecture (although he does have a questionable track record on this issue), but considering the crude, rather less sophisticated capabilities of his set-up, I wouldn't be surprised if it would be easy for most anyone to corrupt it who wanted to. You can also protect yourself by being very careful in which sites you access in using a laptop or computer that's hooked to a wireless network (like you'll often find at Starbucks, overseas internet cafes, hotels, etc.). Millions of dollars have been stolen from Ameritrade and eTrade accounts (for example), by users logging into their accounts from a wireless network by someone else capturing sensitive info who's on the network. It's also good to log out of one site that requires you to use a user ID and password before logging into another, no matter where you are. I don't always take my own advice on this, because I'm working on so many things at once, but it is a good idea when practicable.Â
Thanks for your diligence, TRUTH, and the "heads up." The world is eager to hear what more your investigation uncovers. Since you live so close to Ray, are most certainly on his "hit" list, and maybe use the same provider, it could be that you are more at risk than the rest of us, but that's just a theory.
The ebay and pp phishing emails are so obvious they're laughable. Every time I make a sale, I get them from ebay and paypal -- just like clockwork. When I signed up with ecrater, I got them, too. Selling on Craig's list, or anywhere else, for that matter, will also spawn phishing emails. These phishers can somehow zap into cyberspace and harvest these email addresses. It's a problem everywhere, not just ebay, pp and wp.Â
Just delete 'em and forget 'em and chill.
And regarding the ebay toolbar? There's an article on TT here somewhere that says it's the worst of the lot and not to be trusted. You still have to use your own instinct and knowledge...
[/quote]
I CONCUR. I receive phish emails on a regular basis and can easily spot all of them, although some of them are very sophisticated and look very real and believable to the untrained eye. One of the best ways to spot them is to use a unique (unpublished anywhere) email address and name for your PayPal and eBay financial and personal accounts than you do for other accounts and eBay correspondence. By doing this, you can spot the phish just by looking at which email address the phish was sent to or the name to whom it is addressed. Or sometimes there will be no email address in the "to" field -- also a phish.
I have the eBay toolbar, and don't know if it matters or not, but it doesn't hurt to have it, so I do. I certainly wouldn't trust it -- nor would I trust eBay to identify a phish. eBay often claims emails are phishing when they are not and visa versa. My motto is to NEVER assume ANY email is legit, without first checking it out. That is, if the email is personal correspondence from a site-member, it will be in the site's inbox and can be accessed from there. If the email is a marketing or promo announcement, it will be somewhere advertised in the site itself, e.g. eBay will, from time to time, run contests or will advise of promotions for store owners and power sellers through emails and provide links to participate. If it's real, it will also be advertised on the site itself and can be accessed that way. IN SHORT, there is virtually NO NEED to click on any email link, unless you want to. This won't prevent anybody from receiving phish emails, but will help keep you from being the victim of a phish attempt.
Also REGULARLY change passwords to sensitive sites, like PayPal, other banks, eBay, etc., whether you need to or not, and IMMEDIATELY change if you suspect anything. Whether Ray (or someone close to him) is, or is not, gaining access into a user's IP deliberately and with malice is a subject of conjecture (although he does have a questionable track record on this issue), but considering the crude, rather less sophisticated capabilities of his set-up, I wouldn't be surprised if it would be easy for most anyone to corrupt it who wanted to. You can also protect yourself by being very careful in which sites you access in using a laptop or computer that's hooked to a wireless network (like you'll often find at Starbucks, overseas internet cafes, hotels, etc.). Millions of dollars have been stolen from Ameritrade and eTrade accounts (for example), by users logging into their accounts from a wireless network by someone else capturing sensitive info who's on the network. It's also good to log out of one site that requires you to use a user ID and password before logging into another, no matter where you are. I don't always take my own advice on this, because I'm working on so many things at once, but it is a good idea when practicable.Â
Thanks for your diligence, TRUTH, and the "heads up." The world is eager to hear what more your investigation uncovers. Since you live so close to Ray, are most certainly on his "hit" list, and maybe use the same provider, it could be that you are more at risk than the rest of us, but that's just a theory.