PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fr...
PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:11 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I called Visa while away and found about £600 had been spent through PAYPAL on my card, this was 'suspicious behaviour' and so they suspended the card. Fair enough I thought! They told me the names of the companies making the transactions, see subject title above, of course I had not heard of them. At this point Visa cancelled the card completely.
Then I get home this weekend, and find my eBay and PayPal accounts are also 'suspended'.
Now of course I think these things must be all related.
Has anybody else had this recently too? If so ... Do you think information gained from the webmail breach a few months ago have helped the fraud take place?
SW.
3Mb FTTC
https://portal.plus.net/my.html?action=data_transfer_speed
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:19 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I hope you manage to get things sorted out with your bank sharpish.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:20 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote Do you think information gained from the webmail breach a few months ago have helped the fraud take place?
Short answer, no. As has been announced multiple times, including in the webmail incident report, it was only email addresses gathered. There was no breach of the main account details as the webmail addresses were stored on a separate server.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:26 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Storm Botnet targets UK eBay/Paypal users.
B.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:44 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: Barry Storm Botnet targets UK eBay/Paypal users.
Unlikely to be that as you need to have fallen foul to phishing first if I understand the reoprts for that correctly.
SW.
3Mb FTTC
https://portal.plus.net/my.html?action=data_transfer_speed
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:45 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
What it means is that the people running the Storm botnet are basically brute-forcing passwords for eBay and paypal accounts.
So no, *you* don't have to have fallen foul. All you need is a paypal or ebay account and you are vulnerable.
B.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:48 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: James I hope you manage to get things sorted out with your bank sharpish.
No problems with the bank to be honest. New cards arrived in a couple of days and refunds are already showing on my account for the unauthorised paypal transactions. So far, it has cost me £0!
SW.
3Mb FTTC
https://portal.plus.net/my.html?action=data_transfer_speed
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:52 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: Barry ... the Storm botnet are basically brute-forcing passwords for eBay and paypal accounts.
Ahhh I see!
Umm ... does this mean ebay/paypal do not implement the simple scheme of 3 failed login attempts ... suspend account again for 30mins ... allow 3 failed login attempts ... suspend account again for 60 mins ... or anything similar ?
SW.
3Mb FTTC
https://portal.plus.net/my.html?action=data_transfer_speed
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:56 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Edit: I'm using http://keepass.info/ to generate and store my passwords.
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 10:56 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: godsell4
Umm ... does this mean ebay/paypal do not implement the simple scheme of 3 failed login attempts ...
I'm not sure of the mechanics of eBay and Paypal accounts. This would seem like a sensible thing to do. However, when you have a suspected 50 million machines targetting your servers, I guess that it could cause some overload problems.
They may have some sort of "three tries from one IP and that IP is blocked" principle, otherwise I could effectively lock you out of your own eBay account by attempting to log you in repeatedly. Unfortunately, when dealing with a Distributed cracking mechanism, the IP restriction is ineffective.
Suffice to say, it's worth updating your passwords to something a bit more secure if you haven't done so recently.
B.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 11:00 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: jelv Time to change the ebay password to the maximum strength permitted using a random generator!
his password is 123456??? That's the kind of password an idiot would have on his luggage!
(obligatory Spaceballs quote)
B.
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 11:10 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 11:14 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: James_H
Quote from: jelv Time to change the ebay password to the maximum strength permitted using a random generator!
[me=James_H]avoids pointing out that computers can't do random without external random input. ;)[/me]
Which is why keepass needs a seed which can either be keyed or generated by waggling the mouse around over a random pattern.
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 12:34 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
"I really hate short passwords! They do my head in :)"
is a great password. Harder to brute force and dead easy to remember
(I know this is a bit rich coming from us with our crap passwords last year of course...)
Ex-Broadband Service Manager
Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fraud
11-09-2007 12:51 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Re: PAYPAL*NEXCONINC and PAYPAL*ACCLAIMGAMES == Fr...