Hi,
Recently, I've received a sproofed email which is suspension@ebay.com, and
asking me to enter my username and password. As the email are exactly the
same as ebay's email, and the address is from ebay, I then entered my
username and password. Later on, they use our account to list some
unauthorized item, luckily ebay discovered that.
I learned how to change the "from:" entry in an email by using PHP, is
there a way for the recipent to find out where this email is actually from?

Thx
Adrian

Dude, ebay will NEVER EVER EVER ask you for your username and password in ANY email. If you get one, it is 100% fake.

Either you really are making these two topics up, or you need to sell your computer fast before you get screwed over royally. (aaa)

As for finding out who really sent it, I don't know. Maybe check the properties for the email.

Jesus Christ, how will I make up the topics or sell computer???? It's out of the topic...... if you don't know the answer, just keep your mouth shut.... :drooling:

First, Ebay will never ask for your password. Besides, network administrators don't need everyone's password to do their job, they have the administrative password, which makes them "god" over their network. They need no other permissions. They also say that if you get an email like, I'll rip it straight from their site:

http://pages.ebay.com/help/confidence/isgw-account-theft-reporting.html

Fake eBay Websites and Email

Some community members have received deceptive emails that appear to have been sent from eBay. Recipients of these messages are asked to reply or click on a link contained in the email and then provide personal information on a website that appears to be the eBay site. eBay will not ask you to provide sensitive information such as eBay passwords, social security numbers and credit card numbers through email. If you have any doubt whether an email is from eBay, please refer to the Email and Websites Impersonating eBay page and follow the instructions provided to report the email.

If in doubt, login to Ebay directly (not from the email) and if something is needed it will tell you. If you have questions, contact Ebay support. If your account was stolen

- Change your password ASAP
- Contact Ebay immediately, and refer the whole email, with headers and all. Take support from their website, not from that email. The page I provided above gives instructions for just this purpose.

If you do not do this, you are responsible for what is done with your account. If it was stolen, notify them immediately so they 1. know this happened, and 2. can remedy the situation.

Adrian,

Allow me to actually answer your question :)

As you have discovered, the SMTP protocol is completely dumb and will believe anything you tell it. Students have exploited this to send email from "billgates@microsoft.com" to their friends for years. This is a fundamental security flaw. Spam and phishing emails like this will therefore always be a problem aslong as SMTP exists.

If you are using outlook, drag and drop the email to your desktop, then open it in notepad and look through the HTTP headers. This may give you some clues as to where the email really came from. If the email contains a form to enter information, or contains images or hyperlinks you can look to see which url those html items are pointing to. They probably contain IP addresses, do a DNS lookup on them

E.g, if your email claims to be from ebay.com, and contains a html form which submits data to "12.34.56.78", which resolves to "www.xxxwarez.ru", then you know its not legit.

Oh great. Thx a lot

Jesus Christ, how will I make up the topics or sell computer???? It's out of the topic...... if you don't know the answer, just keep your mouth shut.... :drooling:

No gib was right, seriously I can't believe you fell for that.

Edit: on a different note, I'm a paypal admin, I need to check your account to make sure its safe, please pm me your credit card details and paypal login :p

yeah, and I work for your bank. please send me you account details and passwords.

(asap please. i wanna go to the pub later today)

Open a Dos prompt and type "Format C:"

If it asks you anything just say yes... Its only like giving details to a an anonymous email because it asked for it right?