Ebay spoof installs Adware

Date:03.04.2005

Threat Type: Phishing Attack / Adware

Websense® Security Labs™ has received several reports of a new type of attack which targets customers of Ebay. The spoofed email reports that your Ebay account information is not correct and that you need to contact the website in order to correct it and keep your account active. Upon accessing the website you are redirected to a page which attempts to install a known Active X component which includes Adware.

 

This is not a Phishing attack whereas the end-users credentials are taken and then used in some form of theft, however it uses the same technique of social engineering in order to entice the user to install Adware onto their machine.

 

Email body:

 

Subject: urgent
update

Dear eBay customer, we are sorry to inform you that we are
having problem's with the billing information on your account. We would
appreciate it if you would go to our website and fill out the proper
information that we require to keep your account active,Please Update your
account information by visiting our updates web site below. click here
<URL removed>  to update your billing information