Articles about Ebay

Man with a vaper apparatus - face obscured by smoke/vapour. Photo by Shutterstock

The ‘Vaping Crackdown’ starts today. This is what you need to know

Draconian new regulations on vaping come into effect today – but for many vapers, it won’t feel like a crackdown, at least, not right away, Written into the EU’s revised Tobacco Products Directive were new rules restricting the supply, manufacture and promotion of things which aren’t tobacco products at all, but which have …
Andrew Orlowski, 20 May 2016

Magento attacks uncanny hacks-men with shopper-popper patch

Independent security researcher Nethanel Rubin has reported a since-patched vulnerability in eBay's Magento e-commerce platform that could have allowed hackers to compromise retailers. The vulnerability (CVE-2016-4010) is fixed in version 2.0.6 issued overnight. Magento handed the flaw a 9.8 out of 10 severity score explaining …
Darren Pauli, 18 May 2016

It's all very well hacking ISIS, Barry, but what about your ISA?

Credit card fraud is in decline while ad fraud is poised for growth, according to a new study on the business of cybercrime out Tuesday. Hewlett Packard Enterprise’s (HPE) study provides a detailed look into the inner workings of cybercriminal organisations, their business functions, motivations, and more. The IT giant posits …
John Leyden, 17 May 2016
image from shutterstock_148618127

IT glitch causes 'nationwide' Post Office outage

An IT glitch at the Post Office has caused a "nationwide problem" leaving thousands of customers unable to pay bills, post packages or collect benefits this morning. The Post Office apologised on Twitter for the inconvenience caused by issues with counter services at some branches this morning, saying they had now been …
Kat Hall, 09 May 2016
eBay

eBay buys AI biz Expertmaker for machine learning boost

eBay has announced it is buying AI firm Expertmaker, which specialises in AI, machine learning and data analytics. The e-commerce giant has been working with Expertmaker since 2010 to organise and crunch massive data sets. It will join eBay’s structured data product and technology team. Financial terms of the deal were not …
Katyanna Quach, 06 May 2016
The original Sinclair ZX Spectrum

ZX Printer's American cousin still in use, 34 years after purchase

Emails are still trickling in with readers trying to trump the almost nineteen-year-old server we found was just being decommissioned back in January. A recent missive from reader Ian piqued our interest because it said he's still running a Timex Sinclair 2040 printer bought in 1982! The 2040's a thermal printer based on the …
Simon Sharwood, 05 May 2016

MongoDB on breaches: Software is secure, but some users are idiots

You shouldn't expect to see any end to data breaches caused by misconfigured instances of MongoDB soon, the company's strategy veep has told The Register. MongoDB is a fairly popular document store in the database world, used by eBay, Foursquare, and The New York Times. It's open source, available under the GNU APL v3.0 …

Gumtree 'fesses up to breach and personal information leak

UPDATE eBay's even tattier tat bazaar Gumtree says it's suffered an attack during which users' personal data was encountered by parties unknown and unauthorised. The Register has seen multiple posts in which members of the site report receiving an email with the following text: “We are writing to let you know that some of your …
Simon Sharwood, 29 Apr 2016
money_currencies_648

Baddies' brilliant plan to get mobile malware whitelisted: Bribery

Criminals have resorted to bribes in order to smuggle malware into the source code of mobile gaming apps. The scam, in which malware authors bribed the employees of a legitimate mobile games company in China to embed malware into mobile apps, was uncovered by security researchers from Check Point. The bribe ensured that …
John Leyden, 11 Apr 2016
Hair inside an ASUS S6F

Managing infrastructure, a newbie's guide: Simple stuff you need to know

We all have IT and telco infrastructure equipment that's getting older. Time marches on and few of us have the funds or resources to renew everything when it reaches its official point of being written off by the bean-counters. We all, then, have some kind of legacy kit clinging onto its existence – even if it doesn't quite …
Dave Cartwright, 07 Apr 2016
Apple power CD

When Steve Jobs was away, Apple's designers snuck out a penis-shaped remote control

Apple at 40 Forget what you "know" - that Apple concentrated on just Macintosh computers. Down the years - before iPods, iPhones and Pads, before watches - Apple tried to make all sorts of new technology markets. There was gaming with the Bandai Pippin in 1996 and personal digital assistants with 1993's Newton, for example. Apple's first …
Simon Sharwood, 01 Apr 2016

Gumtree serves world's worst exploit kit to scores of Aussies

Malware expert Jerome Segura says Australia's most popular classifieds site, Gumtree.com.au, was serving the world's most capable exploit kit to some of its millions of monthly visitors. The site is Australia's twelfth-most-popular website and last month attracted some 47.8 million views. Parent site eBay Australia scored 74.6 …
Darren Pauli, 29 Mar 2016

More VC dosh, vicar? Moneymen hand Slack-a-like biz Domo $131m

Venture capitalists have poured $131m of fresh funding into a Slack-like collaboration startup, Domo. Domo, founded in 2010, secured the money in a top-up to an existing Series D funding round from a tranche of its existing backers plus newbie Credit Suisse. That existing round was for $200m and took place in April 2015. …
Gavin Clarke, 23 Mar 2016
Attack film poster

Attack! Run. WTF? A decade of enterprise class fear and uncertainty with AWS

Ten years ago, Oracle was mid-snack, taking a break between swallowing PeopleSoft for $10bn and Sun Microsystems for $8.5bn. Microsoft had settled a long-running feud with Sun over something petty involving Java for $20m and had begun designing its vision of how the internet should be programmed with its new BFF, IBM. …
Gavin Clarke, 17 Mar 2016

The Pirate Party finds a friend: A-G backs member against Sony

The Attorney General advising the European Court on a case that pits a Pirate Party member who operated a public, password-free Wi-Fi network in Munich, has sided with the Pirate. Professor Maciej Szpunar’s opinion isn’t the law, but is often influential in advising the Court’s ultimate decision. Sony discovered the Wi-Fi …
Andrew Orlowski, 16 Mar 2016
George Osborne, photo: HM Treasury

Osbo slaps down Amazon and eBay – who'll be liable for traders evading VAT

Budget UK Chancellor George Osborne has said today the government will make online marketplaces such as Amazon and eBay liable for traders evading VAT in the UK - in his 2016 budget which outlined a swathe of tax cuts. The growing number of sellers based outside Europe and sell goods online without having a registered VAT number …
Kat Hall, 16 Mar 2016
Dollar in pocket, photo via Shutterstock

Watch out, Barclays. Google pilots Hands Free mobile payment

Google is testing a mobile payment system for those loaded down with too much shopping. The ad-flinger is piloting Hands Free, a smartphone payment app that lets you pay for goods and services without removing your phone from your pocket or bag. Hands Free uses a combination of facial-recognition, phone sensors, Wi-Fi and …
Gavin Clarke, 03 Mar 2016

$17 smartwatch sends something to random Chinese IP address

BSides SF A cheap smart watch often peddled on eBay uses a pairing app for Android or iOS that contains a backdoor that quietly connects to an unknown Chinese IP address. The U8 watch sells for just US$17 and offers a 1.48" touch screen, Bluetooth to connect to either Android or IoS phones and the ability to make or answer calls. The …
Darren Pauli, 02 Mar 2016

Your xenophobia is killing us, Silicon Valley warns US Congress

A slew of Silicon Valley leaders have warned US Congress that changes to visa waiver rules for entering the United States are impeding business. The open letter is signed by more than 30 industry heads including the chairmen, CEOs and founders of Twitter, Paypal, Uber, Pixar, Dropbox, Zynga, Pinterest and eBay, among others. …
Kieren McCarthy, 23 Feb 2016

No tit for tat, or should that be tat for tit ... Women selling stuff on eBay get lower bids

It's no secret that women tend to be paid less than men across many professions, and now researchers say the pay gap even extends to goods sold online. A pair of academics in Israel studying eBay auction results over a three-year period found that when selling the same items, both new and used, female sellers got a lower …
Shaun Nichols, 20 Feb 2016
Royal coat of arms on a court building. Pic: Elliott Brown

We're four years away from digitising England's courts – report

An ambitious new report proposes digitising all court processes in England and Wales within four years - but this, as the report itself recognises, will require significant behavioural changes from practitioners if it is to come to fruition. In the biggest shake-up of the court system since the Woolf Reforms in the late 1990s …
OUT-LAW.COM, 19 Feb 2016
Two upended shopping trolleys in an alleyway. Photo by Cyron, licensecd under CC 2.0

Idiot e-tailers falling for fake patch that exploits year-old Magento hole

Malware researcher Denis Sinegubko says attackers are compromising and stealing credit cards from online shops that run on eBay's Magento platform by masquerading as an applied patch for a nasty bug in a bid to hide from admins. The dangerous "shoplift" bug patched last year is a remote code execution hole that turns hackers …
Darren Pauli, 16 Feb 2016

Skype users were targeted by bad-ad pushing Angler crooks

Cybercrooks have been caught running booby-trapped ads on Skype to redirect users towards an Angler exploit kit trap. The tactic, part of a broader malvertising campaign, shows that users can be exposed to malicious ads pushing ransomware and other crud without even using a browser-based app, the most common exploit route. …
John Leyden, 12 Feb 2016
Sidewalk mobile phone lane in China

FTDI boss hits out at 'Chinese criminal gang' pumping knock-off chips

FTDI's CEO Fred Dart has given a rare interview to explain that the company's sometimes-unpopular anti-counterfeiting practices are part of a fightback against a professional Chinese knock-off operation. Adafruit scored the chat, which is published here. Scotland-based FTDI ran into users' ire last year when people found its …
You're fired dialog box

2016 tech shakeout starts with CxO exodus

Analysis The rumblings of over-priced tech stocks, made real last month in above-market share falls, have started hitting home with a series of high-profile exits this week. Gone are Zenefits CEO Parker Conrad, Imagination Technologies CEO Hossein Yassaie, Yelp CFO Rob Krolik and Paypal CTO James Barrese. All resigned, although it has …
Kieren McCarthy, 09 Feb 2016

Alibaba security fail: Brute-force bonanza yields 21m logins

Up to 21 million accounts on Alibaba e-commerce site TaoBao may have been compromised thanks to stolen credentials reused on breached third-party sites. TaoBao is a seller-to-seller commerce site like Gumtree or eBay where users rely on reputation to secure the most sales. Reuters reports that China's Ministry of Public …
Darren Pauli, 08 Feb 2016

Disputed eBay platform vuln poses ‘severe risk’ to tat bazaar's users

A vulnerability in eBay’s online sales platform creates a mechanism for crooks to sling malware or run phishing campaigns. The vulnerability allowed hackers to bypass eBay’s code validation mechanisms, thereby allowing them to push malicious Javascript code towards targeted eBay users. If the flaw is left unpatched, eBay’s …
John Leyden, 02 Feb 2016

Sena's multi-action camera monster, or Cardo's PackTalk club rider juggernaut?

Review Riding the twisties on a motorbike is the great escape for some of us; the scent of the air, the rush of wind, the push through the corners, and the sound of the engine. But it's not always an escape. The daily commute on a straight-as-a-board freeway is not much better than the bus, and it can be irritating to try to talk to …
Darren Pauli, 24 Jan 2016

Which tech stocks are suffering and – crucially – why?

Analysis With the stock markets on a slide since the start of the year, the usual game of over-hyping companies that are doing well has flipped and now the game is to give companies – particularly tech stocks – a good kicking on the way down. Much of the current frenzy appears built around Twitter, which is having a bad year, and the …
Kieren McCarthy, 20 Jan 2016
Reliance free internet from Internet.org

Facebook tries to defend its troubling masterplan to own India's internet

Facebook has provided a passionate defense of its controversial Free Basics program and its approach of "zero rating." In the 19-page response [PDF] to a public consultation on the practice of "differential pricing for data usage" run by India's telco regulator TRAI, the social media giant argues that programs like Free Basics …
Kieren McCarthy, 13 Jan 2016
OpenStack

SwiftStack CPO: 'If you take a filesystem and bolt on an object API'... it's upside down

Interview Open source OpenStack-focused, object storage startup SwiftStack has has early involvement with Seagate’s object storage-focussed Kinetic disk drives, the ones needing server-resident software to manage their IO. We had an email conversation with Joe Arnold, the founder, president and chief product officer of SwiftStack, about …
Chris Mellor, 07 Jan 2016
Claw hammer

If you want a USB thumb drive wiped, try asking an arts student for help

Art students – or at least those at the University of Northern Iowa – are the most likely to know how to permanently delete data from USB drives, while business or humanities students don't even try. That's one amusing conclusion of a serious study, led by the US university's Sarah Diesburg, into how people treat the security …

Security bod watches heart data flow from her pacemaker to doctor via ... er, SMS? 3G? Email?

A computer security researcher has probed the communication protocols used by her pacemaker – and hopes her findings will raise awareness of just how much info medical devices are emitting. Marie Moe received her pacemaker four years ago after she experienced a form of arrhythmia, and her heart began to slow. Soon after, she …
Darren Pauli, 05 Jan 2016

Sellers on Amazon and eBay 'defraud taxman of millions of pounds' - claims peer

Amazon and eBay have been accused of "collaborating with hundreds of overseas retailers to defraud the taxman of millions of pounds every day," during a House of Lords debate on the question of VAT evasion by overseas online retailers. Lord Lucas, who brought the debate, said: "It seems that HMRC has been very slow in its …
Kat Hall, 23 Dec 2015
Old beardy man thinking. Pic: Henadz via Flickr

Why NetApp shouldn’t buy Solidfire

Comment An analyst tells me Solidfire’s technology and locations both have inherent limitations that will prevent its product business from scaling. The first point, says the analyst, is that its technology over-optimises for capacity, via deduplication, and it doesn’t have enough resources left to process and manage its metadata. …
Chris Mellor, 15 Dec 2015

Patch now! Joomla attacked in remote code execution blitzkrieg

Joomla has slung a patch to crush a critical eight-year-old remote code execution vulnerability under active exploitation by attackers. Sucuri threat man Daniel Cid says hundreds of attacks are now taking place having ramped up from a mere handful Saturday. "This is a serious vulnerability that can be easily exploited and is …
Darren Pauli, 15 Dec 2015

50c buys you someone else's password for Netflix, Spotify or ...

Criminals are selling 'lifetime' Netflix, HBO, and cable sports streaming accounts for less than US$10 on sites hidden within Tor. Premium sports accounts sell for about $10 while streaming TV can be bought for as low as 50 cents, far less than the $10 monthly subscription. Comic fans can buy a stolen Marvel Unlimited …
Darren Pauli, 02 Dec 2015

Hewlett Packard Enterprise and Azure sitting in a tree, p-a-r-t-n-e-r-i-n-g

Hewlett Packard Enterprise is buddying up to Microsoft on public cloud, chief executive Meg Whitman has confirmed. On a conference call with financial analysts, the exec said Microsoft Azure will become the "preferred public cloud partner" and in turn HPE will be the primary supplier of infrastructure and services for Redmond' …
Paul Kunert, 25 Nov 2015
Two upended shopping trolleys in an alleyway. Photo by Cyron, licensecd under CC 2.0

Many UK ecommerce sites allow ‘password’ for logins – report

Many of the UK’s most popular ecommerce sites have unsafe password practices, according to a new study, with four in five not requiring the use of a capital letter and a number/symbol. Also, 16 per cent of sites accept the ten most common passwords, including “password”, according to security management outfit Dashlane. This …
John Leyden, 20 Nov 2015
FBI badge and gun

eBay scammer steals identity of special agent investigating him

A cybercriminal who ran a mere eBay scam became a more significant collar for the US Department of Justice after he successfully stole the identity of the special agent investigating him. Rohit Jawa, 25, has pleaded guilty to eight counts of wire fraud, and one count of stealing a special agent's identity which he then used to …
Chattanooga

The Internet Association backs FCC's muni broadband push

Count the likes of eBay, Facebook, and Twitter among those who support the FCC's plan to allow municipal governments to become ISPs. The Internet Association, an industry group whose membership also includes Google, Amazon, and Yahoo!, has filed an amicus brief with the US Sixth Circuit Court of Appeals in support of the FCC …
Shaun Nichols, 13 Nov 2015
eBay

Obama: Let me spam 600,000 of your customers with a TPP sales pitch. eBay: Sure thing, Barry!

President Obama is taking his case for the Trans Pacific Partnership (TPP) online with a spammy pitch to eBay merchants on how the trade deal will benefit them. The US Commander In Chief sent a letter to 600,000 eBay sellers outlining the virtues of the controversial international trade deal that, according to Obama, will make …
Shaun Nichols, 12 Nov 2015

Whitman's split: The end of Fiorina's HP grand expansion era

Hewlett Packard became two companies on 1 November, splitting enterprise from consumer. Founded by David Packard and William Hewlett, number one in PCs and in servers, one the granddaddies of Silicon Valley, the massive corporation has undergone a massive change. Personal computers and printers have now been set adrift onto …
Gavin Clarke, 02 Nov 2015

HMRC 'reluctant' to crack down on VAT fraudsters – tax ace

HMRC could be reluctant to crack down on VAT fraudsters selling goods online without declaring VAT because of the costs involved, a European tax expert has claimed. Rita de la Feria, a professor in tax law at Durham University, claimed that Amazon and eBay may be liable for VAT if they do not take due diligence and ask …
Kat Hall, 02 Nov 2015

Pop-up Kiwi CERT a shepherd for helpless hacked SMB flock

New Zealand will get its first national computer security incident response team (CSIRT) helping to assist underserved hacked small businesses, should a funding effort be successful. If the money rains, at least two professional security consultants and possibly some graduate students will work over a year to assess what is …
Darren Pauli, 29 Oct 2015
Two upended shopping trolleys in an alleyway. Photo by Cyron, licensecd under CC 2.0

Joomla patches critical core shop-pwning flaw

Popular content management system (CMS) Joomla has pushed three patches, including a critical fix for SQL injection vulnerabilities that allow attackers to become admins on most customer websites. The team issued fix 3.4.5 addressing the SQLi vulnerabilities (CVE-2015-7297, CVE-2015-7857, CVE-2015-7858) which exist in version …
Darren Pauli, 23 Oct 2015

German surfers blitzed by widespread malvertising campaign

German surfers are under attack from multiple directions this week because of a widespread malvertising campaign. Users of eBay.de and subscribers of ISP T-Online.de were confronted with tainted ads after cybercrooks succeeded in pushing malicious traffic through rogue systems. The attacks began after hackers circumvented …
John Leyden, 22 Oct 2015
server room

Not quite Facebook but need scale? Dell has a DSS server for you

Dell has launched four specialised DSS servers. In August Dell said it had found a new niche between ordinary scale data centres and the hyperscalers like Facebook, eBay, Amazon and their hyper-ilk. This not-quite-hyperscale customer base would be sold to by a new DSS organisation with its own special server-based products. …
Chris Mellor, 20 Oct 2015

Neutrino exploit kit attacks hit thousands of Magento shops

Researchers are warning of a bumbling but large campaign against Magento-powered ecommerce sites that is redirecting users to the Neutrino exploit kit. It is unclear how many sites have been popped, but admins will notice this drop-dead dumb hint: the attack includes a file named neutrino.php. Websites using eBay's Magento …
Darren Pauli, 20 Oct 2015
Kindle Big Brother

Google, Facebook, Microsoft and buddies stick a bomb under hated CISA cyber-law

Some of the biggest names in the tech industry have issued a public protest against the proposed Cybersecurity Information Sharing Act (CISA) working through US Congress. An open letter protesting the bill was sent by the Computer and Communications Industry Association (CCIA), an industry body whose members include Microsoft …
Iain Thomson, 16 Oct 2015