On May 25th, AuctionBytes reported that AuctionStealer, a popular sniping software, had its site breached by the Worm attack in February. The day after that report was published, the AuctionStealer site suffered a two-day DDOS (distributed denial of service) attack, causing concerns for users who could not access the site due to the attack. AuctionStealer was back online Wednesday afternoon after suffering its first outage Monday afternoon. Sniping services were operational on Wednesday morning despite the site outage.
AuctionStealer's president said the DDOS was directed by a large hacker group based in Russia that had tried to extort money from him, threatening to ruin the business if he did not comply. Several auction services market AuctionStealer's software under their own names, and the DDOS affected access for those sniping services as well, including BidSniper and HammerSnipe.
While AuctionStealer does not know the full extent of the hack, it is possible that some eBay usernames and passwords were compromised. The site owner recommends all users log onto eBay and change their passwords. No credit card information was compromised since AuctionStealer does not accept credit card payments for its service.
AuctionStealer's President said his main concern was his customers, and he was working on neutralizing the threat and moving on.
