728_header.jpg (23748 bytes)
 Home   EB Blog   AB Blog   Letters   Podcasts   ABTV   Forums   EPIS   PR Service   Classifieds   Ecommerce EKG   Service Ratings   
  Subscribe    RSS Feeds    Twitter        Contact Us  Web Site  
Service Ratings 
   Auction Sites
   FP Marketplaces
   Inventory Management
   Payment Services
   Storefronts & Carts
   Sniping Services
   Wholesale/Dropshipping
   Email List Hosting
   Consignment Services
   Ecommerce EKG 
   Auction Calendar
   Collectors' Links
   eBay Promo History
   Bookshelf
   Fraud Resources
   Drop-Off Store Laws
   ABTV
   Ecommerce Resources
   Photo Tips
   Marketing Inserts
   Yellow Pages
   Advertising
EcommerceBytes-NewsFlash, Number 1480 - February 22, 2007 - ISSN 1539-5065     Previous | | Next
eBay Addresses Vladuz Hacking Incident
By Ina Steiner
EcommerceBytes.com
February 22, 2007


Rumors have been circulating since December that a Russian had hacked into eBay databases. Screenshots of discussion-board posts by eBay moderators that were composed and signed by "Vladuz" were posted by eBay members as proof that the hacker had accessed eBay email accounts. An eBay spokesperson did not respond to an inquiry made by AuctionBytes last month looking for information about the alleged hacking incident.

But a small group of eBay users kept discussing the Vladuz matter online. On Wednesday, eBay finally responded to an inquiry from the Register in the UK and acknowledged that someone had obtained access to a small number of eBay email accounts (http://www.theregister.co.uk/2007/02/20/ebay_conspiracy).

eBay spokesperson Hani Durzy told AuctionBytes on Wednesday that at no time did the fraudster have access to any member's personal or financial information. Durzy said a Romanian had obtained access to a handful of email accounts from some customer service representatives. The only information he had access to was information contained in emails, which did include some screenshots of some backend tools, Durzy said. Email servers are kept separate from servers hosting member data, he said.

eBay has a policy that prohibits employees from putting customers' financial information in emails, such as credit card numbers or social security numbers (street addresses do not fall under that policy, Durzy said, since that is already in the public domain). eBay customer service representatives are trained about what they can and can't put in emails.

Durzy claims the perpetrator was a "known Romanian fraudster" going by the handle Vladuz. "Our number one priority is to see him caught and locked up," Durzy said.

Over the past few weeks, eBay had removed multiple threads from its discussion boards in which members discussed the Vladuz incident, including on its German and UK sites. But users kept the pressure on eBay by discussing Vladuz on their own sites that sport such quirky names as FireMeg.blogspot.com, PheeBay.com and eBayMotorsSucks.com. Durzy said eBay forum threads were removed because they included the screenshots that had been obtained illegally. "We do not allow people to link to that information on our boards."

Asked why eBay did not address member concerns in the discussion boards, Durzy said it would not be appropriate for him to comment on a specific case, but said eBay makes decisions that are in the interest of the marketplace as a whole.

You may quote up to 50 words of any article on the condition that you attribute the article to EcommerceBytes.com and either link to the original article or to www.EcommerceBytes.com.
All other use is prohibited.

Email Newsletter icon, E-mail Newsletter icon, Email List icon, E-mail List icon Sign up for our Email Newsletters

Email this story to a friend.

Previous | | Next

 EcommerceBytes Blog 
 AuctionBytes Blog 
 Letters to the Editor 
Related Stories 
Related Stories
  • eBay Addresses Vladuz Hacking Incident - February 22, 2007, Issue #1480
  • He's Baaack - Vladuz 'Hacker' Taunts eBay - February 23, 2007, Issue #1481
  • Vladuz 'Captcha Populator' Tool Doesn't Worry eBay, Mozilla - March 06, 2007, Issue #1488
  • eBay Auction Listing Swings Remain a Mystery - March 12, 2007, Issue #1492
  • Romanian Hacker Vladuz Makes Another eBay Housecall - March 14, 2007, Issue #1494
  • eBay Shuts Trust & Safety Board after Credit Card Numbers Exposed - September 25, 2007, Issue #1628
  • eBay Denies Security Breach after User Information Exposed - September 26, 2007, Issue #1630
  • eBay Explains Security Hole Used by Hacker - October 09, 2007, Issue #1638
  • Hacker Email Address Used in Previous eBay Scams? - October 09, 2007, Issue #1638
  • eBay Hacker 'Vladuz' Arrested in Romania - April 18, 2008, Issue #1772

    • Discussion Forums 
    Have a question about buying or selling online? Want to get marketing or technical advice? AuctionBytes Discussion Forums are the place to come to get answers to your questions and get advice! Great tips - a refreshing change!

    Current Discussions:
     
    About Us      Privacy Policy      Link to Us      Partners      Our Writers      Write for Us      Press        Site Index

    Copyright 1999-. Steiner Associates LLC. All rights reserved.