Print 30 comment(s) - last by Spacecomber.. on Sep 12 at 4:01 PM

A massive brute force attack, lasting for more than a week, threatens to compromise eBay's userbase

If the compromise last week got you down, wait until the full details of eBay's current battle come to full light.  It's not been publically confirmed by eBay representatives, but the company is at war with a zombie network.

According to an interview with security experts on eWEEK, the botnet is hammering away at eBay in an attempt to brute force its way into accounts with financial and personal information. Aladdin Knowledge Systems claims this attack has been underway for at least one week.


The zombie infection itself seems to be very complex and designed to be loaded in pieces. Apparently 300 or so infected websites are disseminating the virus to visitors that use those websites. The virus then goes out to the web and pulls several pieces of information it needs to attack the eBay accounts.

Aladdin Knowledge Systems claims there are 4 or 5 stages to the Virus to gather everything it needs to launch and participate in the attack. It is currently unknown how many machines are infected and participating in this attack.  Aladdin Knowledge Systems first noticed the botnet attack when it was discovered by their eSafe SecureSurfing product that is marketed to ISP's to monitor and filter infected websites.


Additional details, including any database compromises, have not been disclosed.

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

This is what (probably) gave me my headache!
By marsbound2024 on 9/5/2007 5:03:53 PM , Rating: 2
Recently my account was hacked into and used for distributing crap messages to other users... They also got into my Paypal and tried to put up crap listings. Anyways, ended up deleting my Paypal account (didn't use it anyways) and putting a hold on my eBay account.

By marsbound2024 on 9/5/2007 5:09:02 PM , Rating: 2
Another reason why I say this is because I was on the phone with a Paypal rep when I was trying to delete my account... she told me to click on something to access my account information and the thing never responded... the only thing I could see was that my Paypal balance was $0.00 (yay)... other parts of my account were inaccessible. I could never click on anything. Lo and behold, my computer eventually RESTARTED on its own after about ten or fifteen seconds of trying to access my account to delete it(and I never have had occurrences such as this). It was certainly fishy so I shut down my account over the phone.

By Oregonian2 on 9/5/2007 6:47:05 PM , Rating: 2
Your browser brought your machine to a reboot?


By marsbound2024 on 9/6/2007 2:45:34 PM , Rating: 2
No, not likely (was using Firefox as well). My machine is decent enough (Athlon 64 3800+ single core--I have Socket 939--1024MB RAM, XP SP2 with all the updates, 7600GT, 3.0GBps 250GB HDD, Avast, Comodo Firewall, Adaware and other software with all the updates)... sure not the best, but since I keep my computer maintained, it usually does not pose any problems. I am thinking that a hacker/virus had perhaps made my computer restart or it was otherwise a very unfortunate coincidence.

PS: Yes I know my specs aren't that great really considering, but it is not miserable enough to be so sad that indeed my browser itself would have brought my machine to a reboot.

RE: This is what (probably) gave me my headache!
By xsilver on 9/5/2007 8:05:53 PM , Rating: 2
i wonder if your account gets hacked and $500 is stolen from your paypal account per se.
would ebay be kind enough to get it back for u?

or will they be as useful as their "buyer protection" system

RE: This is what (probably) gave me my headache!
By cgrecu77 on 9/5/2007 8:34:03 PM , Rating: 2
their buyer protection program is actually quite useful ... it's unfair to the owners in that there's very little inquiry before they get charged back - almost no questions asked.

RE: This is what (probably) gave me my headache!
By leexgx on 9/5/2007 9:47:41 PM , Rating: 2
i just make sure i use an account that i move my money out off soon as it pops in (let my bank Deal with ebays No queston refunds when norm the buyers fault for not resoveing it)

i refund it (Excluding p&p costs) if it has got an problem After i recive the Item back and was in the same order it was sent out with (take pics of the item Before you send i off with time stamps on them)

RE: This is what (probably) gave me my headache!
By geeg on 9/6/2007 12:29:36 AM , Rating: 3
I have been using ebay/paypal since 1998 for my business.
ebay or paypal does not protect anything. All of their "protection" are such conditions where a protection would not be needed in the first place. The other situations, they do not protect the seller.
ebay/paypal charge A LOT. In return they do not offer much protection. And if you think about the service, it is a web service anyways. Charging %5 for that??
There is a reason why the owner of ebay is one the top billionaires.
If there was an alternative like eGoogle I would switch right away.

By Misty Dingos on 9/6/2007 7:58:37 AM , Rating: 3
And what makes you think that eGoogle would be any cheaper or kinder to sellers? At last check it seemed to me that given the chance google would take over the world if it could.

"I want people to see my movies in the best formats possible. For [Paramount] to deny people who have Blu-ray sucks!" -- Movie Director Michael Bay

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki