Feeds

Once again, 'Vladuz' impales eBay defenses

Getting ridiculous

Beginner's guide to SSL certificates

For at least the third time in as many months, a malicious hacker has gained unauthorized access to parts of eBay's network despite the best efforts of the company's security team to fortify its system against the embarrassing breaches.

A miscreant who went by a variation of the name Vladuz was able to secure credentials reserved for employees of eBay and post on at least two of the company's forums, including (ironically) one dedicated to trust and safety. The intrusion, like the others preceding it, is fueling suspicions that eBay suffers from systemic security problems, contrary to the online auctioneer's assurances that the hacker hasn't breached servers that store customer records and other sensitive data.

Over the past two months, the volatility in the number of auctions being posted and then pulled has skyrocketed. Critics say the spike is a result of a security hole in eBay's system that allows cyber-crooks to take over established accounts at will and post a flurry of fraudulent auctions. Once eBay's security team catches wind of the scams, the postings are removed, creating the sudden declines in listings.

eBay spokeswoman Nichola Sharpe said company security employees are taking measures to put a stop to Vladuz's intrusions. "We are in the process of putting lots of behind-the-scenes things in place to stop him," she said. "We're as confident as we can be" that the measures will work. Sharpe said members of the security team know exactly how the perpetrator is breaching the network. She declined to describe that method or to elaborate of the fixes being implemented.

There is no evidence today's breach was any different from previous times, when the hacker was able to penetrate servers that administer employee email and possibly other functions such as an intranet, Sharpe said. She was emphatic that the intruder has never accessed more sensitive parts of the network.

Those assurances have done little to assuage a small but vocal group of users who say fraud is running rampant on eBay. Indeed, just prior to the most recent breach, some forum participants were bemoaning the exploits of Vladuz and what they claimed was eBay's inability to fix the problem and its refusal to acknowledge it publicly.

"We have to be very patient until these problems rise high enough to get some attention by the wide public," a user with the handle thorbenhauer wrote at 10:24 AM German time. "And even then eBay will still stick to their good old tactics: plausible deniability, disposing every bit of proof they can lay their hands on and accuse others of misinformation." At noon, a posting appeared with the pink banner that is supposed to be reserved for official eBay representatives. Quoting part of thorbenhauer's message, the impostor, who used the nick vladuzpower, responded: "Turn on CNN on march 15, you might have a surprise, however I'm not promising anything." He didn't elaborate. The intruder also made pink postings on a US-based forum, Sharpe said.

Today's exploit is only the latest headache for eBay security personnel. Last week, an eBay user posted the personal information of at least 15 people, including first and last names, social security numbers, mother's maiden names, addresses, phone numbers, bank account numbers and credit card numbers. A call to one of the names listed confirmed that the information was accurate.

It was unclear how last week's poster, who did not log in as an eBay employee, acquired the information. eBay does not collect much of the data posted, so it's safe to assume at least some of it originated from a source other than the online auctioneer. ®

Internet Security Threat Report 2014

More from The Register

next story
The cloud that goes puff: Seagate Central home NAS woes
4TB of home storage is great, until you wake up to a dead device
Azure TITSUP caused by INFINITE LOOP
Fat fingered geo-block kept Aussies in the dark
You think the CLOUD's insecure? It's BETTER than UK.GOV's DATA CENTRES
We don't even know where some of them ARE – Maude
Intel offers ingenious piece of 10TB 3D NAND chippery
The race for next generation flash capacity now on
Want to STUFF Facebook with blatant ADVERTISING? Fine! But you must PAY
Pony up or push off, Zuck tells social marketeers
Oi, Europe! Tell US feds to GTFO of our servers, say Microsoft and pals
By writing a really angry letter about how it's harming our cloud business, ta
SAVE ME, NASA system builder, from my DEAD WORKSTATION
Anal-retentive hardware nerd in paws-on workstation crisis
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
The Heartbleed Bug: how to protect your business with Symantec
What happens when the next Heartbleed (or worse) comes along, and what can you do to weather another chapter in an all-too-familiar string of debilitating attacks?
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.