Hi Auctiva and everyone reading this, I have just received an email that was very professionally done and dispatched from a spoofed "firstname.lastname@example.org".
The email requested an eBay token relinking and provided a button that links to a login page same as auctiva but on a different domain. Even when I have a trained eye for these things, it almost got me fooled.
I tried entering "a" for both username and password and it did login successfully and brings you to another phishing page that resembles an eBay page. I guess you know what happens from here on...
Just want to warn everybody to keep a sharp eye on these emails, especially when we think our listing might get affected if we don't comply immediately. The link and domain name is always the giveaway to phishing sites. Hope this reaches out to everyone in time before someone got tricked and get their ebay account or even worse paypal one falling into the wrong hands.
Here's a screenie of the phishing email:
Also as a suggestion, it will be great if the Auctiva newsletter warns/gives tips about these phishing emails periodically to prevent anyone falling into their traps.
Both ebay and paypal have a "spoof" email address where you can sent suspicious emails for verification and investigation. Does Auctivea have one?
|Auctiva Product Manager|
|Powered by Social Strata|