The latest scam, revealed by the internet security vendor eBlocs, targets PC users via email and asks them to update personal and financial information by clicking on a provided link. The URL most recently used is http://18.104.22.168/cgi-bin/s~, which has been partially masked.
The scam has been assigned a threat level rating of "5" by the company, its highest. eBay users can report phony attempts to access account information through the company's website. The company website also gives advice to users on how to detect fraudulent emails.
"Do not click on a link embedded within any potentially suspicious email, especially if the email requests personal information," the company advised. "Instead, try starting a new internet session with your browser, typing the web address of the link into the address bar, and pressing enter to be sure you are directed to a legitimate web site."
PayPal, a division of eBay, was also targeted by a fraudulent phishing email originating in Romania last week. Identified by WebSense, the scam email targeted users through a section entitled "Security measures: Are you traveling?" PayPal warned users that it will address them by name in legitimate emails, not as "PayPal user."Meanwhile, eBay was ranked No. 1 in CipherTrust's list of most phished sites for October of this year. PayPal was runner-up.