ebay attacked, fake risk

The main security researchers have called on ebay to take immediate action against dangerous goods, as the issue continues to threaten its users, the BBC website reported recently.

Currently, the BBC has determined that more than 100 items on ebay are being used to deceive users into handing over personal data. And ebay said it would "continue to review all site features and content." ”

According to a BBC survey, many user accounts with 100% praise and hundreds of thousands of items were hijacked and sold for fakes; the victim of the 二、一位 account was said to have received the ebay seller's bill after he locked the account, although he did not auction the goods; Will enter a complex, seemingly official website, and be required to log in and share information about the bank account; four, a wide range of dangerous goods, including smartphones, televisions, bathtubs, clothes and so on.

Ebay acknowledges that the sellers ' use of JavaScript and Flash animations on the Web page has greatly improved the likelihood of bringing malicious code into the Web page because of a hacking technique known as cross-site scripting (XSS). This means that users who click on legitimate ebay items are automatically directed to illegal websites designed to steal user information, including credit card details.

The issue has continued to affect ebay since February this year. Many security experts criticized the site for its security measures. Security researcher Brian Honan asked ebay to disable all active content until it can reassure customers. In addition, more than 10 users expressed concern about the safety of the site and the handling of customer complaints procedures.