Yeah, open Wifi is awful. While you can't easily obtain someone's login details, as they are usually encrypted, you can hijack active login sessions. They would have been monitoring the network and when you initiated a login, they would have been able to capture that token and use it up until the point it expires.
Some hacker bought something on my ebay account !! WHAT!
- Thread starter Combat squirrel
- Start date
Yeah, open Wifi is awful. While you can't easily obtain someone's login details, as they are usually encrypted, you can hijack active login sessions. They would have been monitoring the network and when you initiated a login, they would have been able to capture that token and use it up until the point it expires.
- Joined
- 7 Aug 2004
- Posts
- 11,260
Awful isn't it :/ it's getting to the point these days that almost nothing can be done about online security :/
Would a VPN Help with keeping data encrypted on public wifi ?
Would a VPN Help with keeping data encrypted on public wifi ?
- Joined
- 7 Aug 2004
- Posts
- 11,260
So update:
1) Attempt to flag the unauthorized payment in paypal - denied apparently I did it
2) As I can no longer flag it as unauthorised - I sent a web mail form - they take another look - denied apparently I did it
3) Shout at man on phone who was british from paypal - assures me they are looking closer now (they dont seem to understand that the hacker went via my ebay)
2 minutes ago I get an email from ebay saying "Unauthorized use of your account -- action required"
NO **** SHERLOCK !! Been flippin shouting a lot for past day or so that this is going on !!!
At least thats a step in the right direction now.......... Jesus wept, It's a complete farce - as soon as my money is back BYE BYE never using that again, unlinking my accounts, use credit card if I must.
1) Attempt to flag the unauthorized payment in paypal - denied apparently I did it
2) As I can no longer flag it as unauthorised - I sent a web mail form - they take another look - denied apparently I did it
3) Shout at man on phone who was british from paypal - assures me they are looking closer now (they dont seem to understand that the hacker went via my ebay)
2 minutes ago I get an email from ebay saying "Unauthorized use of your account -- action required"
NO **** SHERLOCK !! Been flippin shouting a lot for past day or so that this is going on !!!
At least thats a step in the right direction now.......... Jesus wept, It's a complete farce - as soon as my money is back BYE BYE never using that again, unlinking my accounts, use credit card if I must.
Soldato
- Joined
- 30 Oct 2008
- Posts
- 3,148
- Location
- South
Sounds like a nightmare! I had my origin account hijacked and turned into a Russian account, weird as I had only ever created the account to get a free copy of red alert I believe. I hadn't used it since setting it up so I knew I hadn't logged into a phishing site or anything. Lucky it had no purchases or anything on it.
Like you, I've no idea how they gained my credentials.
Like you, I've no idea how they gained my credentials.
People won't accept they've been social engineered.
Many years ago someone I worked with looked up from his desk and said "what happens if you fill in one of those forms that looks like PayPal but isn't quite right?". I asked if he'd done it but he vehemently denied it.
A bit later he asked again and again I questioned if he'd done it. Eventually he admitted that he had. Luckily nothing came of it.
Intelligent bloke, just got taken in by it all but totally flatly denied it initially.
To Mr. Squirrel, I hope you get it resolved.
Many years ago someone I worked with looked up from his desk and said "what happens if you fill in one of those forms that looks like PayPal but isn't quite right?". I asked if he'd done it but he vehemently denied it.
A bit later he asked again and again I questioned if he'd done it. Eventually he admitted that he had. Luckily nothing came of it.
Intelligent bloke, just got taken in by it all but totally flatly denied it initially.
To Mr. Squirrel, I hope you get it resolved.
I had one a couple of months ago, can't remember if it was paypal or not but it looked real enough in the email and when I opened the link.
Luckily I woke up just before handing my life over and realised it was indeed a phishing scam.
They're getting smarter and more believable and it's not difficult to fall for it if you're not paying too much attention.
Luckily I woke up just before handing my life over and realised it was indeed a phishing scam.
They're getting smarter and more believable and it's not difficult to fall for it if you're not paying too much attention.
If I receive these emails, I normally don't go through the link sent but I'll use google to go to the actual page. If somethings up, I would assume it'll tell me when logging in.
- Joined
- 7 Aug 2004
- Posts
- 11,260
Ahhh man, I honestly didn't fill in any forms, lol, I mean, I honestly don't remember it - iv not logged in/out ebay off my anytime in the past month, and i just go the website, I defo don't follow any email links and again, I always check the verisign/kaspersky.
I mean, im not saying its impossible, but im clued up, hence why im so shocked, iv bought other items on ebay like 2 days before, because i remember that - oddly enough, i have not followed this item, its not on my wish list/ watching, its a completely random item..............i dont play any playstation games, im a PC gamer, the social engineering adds are all direct toward my 'profile' iv not used my playstation 3 in many years.............its just a completely random item that got bought.
Highly suspicious - could have been a website that has code to 'check' if another tab in a browser has ebay logged in for example - but that's still 'hacking' / malware / fraudulent................
They could have simply found another way to access an account..........i mean i think its as simple as - this is a new form of 'hack/access/fraud' that ebay/paypal are simply not aware of.
But then, all my open websites are normal ones, not random dodgy ones, the usual you know....OCUK, fb, gmail, youtube etc
I mean, im not saying its impossible, but im clued up, hence why im so shocked, iv bought other items on ebay like 2 days before, because i remember that - oddly enough, i have not followed this item, its not on my wish list/ watching, its a completely random item..............i dont play any playstation games, im a PC gamer, the social engineering adds are all direct toward my 'profile' iv not used my playstation 3 in many years.............its just a completely random item that got bought.
Highly suspicious - could have been a website that has code to 'check' if another tab in a browser has ebay logged in for example - but that's still 'hacking' / malware / fraudulent................
They could have simply found another way to access an account..........i mean i think its as simple as - this is a new form of 'hack/access/fraud' that ebay/paypal are simply not aware of.
But then, all my open websites are normal ones, not random dodgy ones, the usual you know....OCUK, fb, gmail, youtube etc
Soldato
- Joined
- 11 Jan 2007
- Posts
- 8,794
- Location
- *̡̡ı ̡̡͡|̲̲̲͡͡͡ ̲▫̲͡ ̲̲̲͡͡π̲̲͡͡ ̲̲͡▫̲̲͡͡ ̲|̡̡
Once bitten and all that. I had money taken from paypal this year when my teamviewer was compromised. £200 odd. I disputed it and got the money back in the end but that was the last time I will ever used paypal or teamviewer.
Last edited:
This isn't hacking.
The fake sites they use are getting better. I fill in the forms with bogus info occasionally to see just how far they've gone. One time they had a site that looked identical to PayPal's site, you could even "log in".
A good way to determine if a site is a spoof one is to enter your password incorrectly twice, as that'll show that it's actually referencing something.
The fake sites they use are getting better. I fill in the forms with bogus info occasionally to see just how far they've gone. One time they had a site that looked identical to PayPal's site, you could even "log in".
A good way to determine if a site is a spoof one is to enter your password incorrectly twice, as that'll show that it's actually referencing something.
Just stop Ebay from storing your PayPal password and type it manually from now on.
Out of curiosity, do you use a unique password for every site?
That doesn't help when it comes to keyloggers or phishing though.
Last edited:
I see you mentioned having a PS3, did you have a PSN account? I seem to recall Sony being hacked a while back, but I don't remember when exactly. I'm just wondering if your eBay or Paypal passwords were the same as your PSN or email account passwords?
Perhaps it's something less obvious, like somebody knowing the answers to your security questions for your email or eBay account.
In the eBay transaction you should be able to view the order details and this should show you the delivery address.
Perhaps it's something less obvious, like somebody knowing the answers to your security questions for your email or eBay account.
In the eBay transaction you should be able to view the order details and this should show you the delivery address.
- Joined
- 7 Aug 2004
- Posts
- 11,260
Oh my life, I have repeated the issue is NOT resolved several times to paypal and my account is still showing the transaction, as deep and meaningful their replies are so far:
"Thank you for contacting PayPal
From researching your account history, I can see that your issue has been resolved.
We are continually improving our customer service and can be contacted by clicking Contact near the bottom of any PayPal page.
Please let us know if you require any further assistance.Thank you for contacting PayPal
They have sent this twice..........despite me pointing out A BILLION TIMES IT HAS NOT.
What really bothers me, by far, is this massive international company are simply doing the big company version of 'sticks fingers in ears - go away - nerrr ner nerrr nerrr ner'
I mean, this has actually happened - I got robbed...........we have currently got this far in resolving it:
Me) I got robbed
Paypal) No you didnt
Me) I did, because im down £200, and something was bought on my account, that I did not do
Paypal) No you didnt
Me) I did, I'm not thick, I am quite aware of what i have bought and what i have not bought - i wasn't on any device when the transaction happened
Paypal) No you didnt, it was you, go away
Me) ?!?!?!??!?!!!?!?!?
Paypal) The issue is resolved thank you for using paypal
Me) ITS NOT RESOLVED YOU HAVE NOT REFUNDED MY MONEY THAT I DID NOT SPEND
Paypal) The issue is resolved thank you for using paypal
Paypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypal
HOW DO THEY GET AWAY WITH THIS?!
"Thank you for contacting PayPal
From researching your account history, I can see that your issue has been resolved.
We are continually improving our customer service and can be contacted by clicking Contact near the bottom of any PayPal page.
Please let us know if you require any further assistance.Thank you for contacting PayPal
They have sent this twice..........despite me pointing out A BILLION TIMES IT HAS NOT.
What really bothers me, by far, is this massive international company are simply doing the big company version of 'sticks fingers in ears - go away - nerrr ner nerrr nerrr ner'
I mean, this has actually happened - I got robbed...........we have currently got this far in resolving it:
Me) I got robbed
Paypal) No you didnt
Me) I did, because im down £200, and something was bought on my account, that I did not do
Paypal) No you didnt
Me) I did, I'm not thick, I am quite aware of what i have bought and what i have not bought - i wasn't on any device when the transaction happened
Paypal) No you didnt, it was you, go away
Me) ?!?!?!??!?!!!?!?!?
Paypal) The issue is resolved thank you for using paypal
Me) ITS NOT RESOLVED YOU HAVE NOT REFUNDED MY MONEY THAT I DID NOT SPEND
Paypal) The issue is resolved thank you for using paypal
Paypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypalPaypal) The issue is resolved thank you for using paypal
HOW DO THEY GET AWAY WITH THIS?!
OP, you should probably take a step back, breathe, take 10 minutes to calm down, and then approach things more rationally.
Shouting at people from PayPal is not going to help. In fact if I get shouted at I feel a lot less compelled to try and help someone.
For the love of God calm down.
Shouting at people from PayPal is not going to help. In fact if I get shouted at I feel a lot less compelled to try and help someone.
For the love of God calm down.