Posted 06 March 2007 - 06:33 PM
Taken Form Wikipedia-
In computing, phishing is a criminal activity using social engineering techniques. Phishers attempt to fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. EBay and Paypal are two of the most targeted companies, and online banks are also common targets. Phishing is typically carried out using email or an instant message, and often directs users to a website, although phone contact has been used as well. Attempts to deal with the growing number of reported phishing incidents include legislation, user training, and technical measures.
The first recorded mention of phishing is on the alt.online-service.america-online Usenet newsgroup on January 2, 1996, although the term may have appeared even earlier in the print edition of the hacker magazine 2600. The term phishing is a variant of fishing, probably influenced by phreaking, and alludes to the use of increasingly sophisticated lures to "fish" for users' financial information and passwords. The word may also be linked to leetspeak, in which ph is a common substitution for f. The popular theory that it is a portmanteau of password harvesting is an example of folk etymology.
Strawberry Fields Forever!!
Posted 06 March 2007 - 11:30 PM
I think you may misunderstand a bit what phishing is - if that seller were to put that item up as buy now, and you were to purchase it, and you payed for it, and he never sent it, that would be fraud, not phishing.
Phishing would be more like an email that APPEARS to be from someone from eBay management. It would look authentic and give a faux reason for needing your personal information. It would ask for you to send the sender the information, and you would think you were doing something necessary whereas you are actually sending info to a person who will steal your identity and use your info to buy things.
Here is an example of an email that is fake. eBay will never ask for information in a manner such as this:
Hello, Valued eBay customer. We are opening a new validation system on ebay and we will need you to re-enter some key information in order for you to continue selling and buying on ebay. Don't worry! It's quick and painless, but necessary. Simply enter your full name, Dogs name, address, phone number, credit card, social security, and the number of sodas in your fridge in an email replying to this one.
Your account will be activated and ready to go in a few weeks and you can enjoy some brand new features we have prepared for you!
They are scary, but if you use a little judgement, you will know. They are usually emails. Be very careful. People are sneaky.
Edited by Gejitchi, 06 March 2007 - 11:31 PM.
Posted 07 March 2007 - 09:36 AM
Posted 07 March 2007 - 08:35 PM
Happy to inform. You are right - It definitely is something for anyone who uses an ebay or paypal account to know about, because users of both those companies are prime targets for phishing attempts - a good rule of thumb is to never send sensitive information such as credit card info via IM or email. Obviously, there are some exceptions, but typically, if you get an email in your inbox that asks for such info, you should not answer and maybe even notify the company being imitated of the phishing attempt.
Thanks for the info you posted Gejitchi. Maybe I got a little confused but it is something to be aware of anyway while shopping online. It was just strange how that info came up on EBay instead of the link.
Edited by Gejitchi, 07 March 2007 - 08:35 PM.