Products > Test Equipment
Ebay SCAMS?
<< < (10/12) > >>
tautech:

--- Quote from: bd139 on August 15, 2022, 10:02:48 pm ---Nah you just have to know how to play it. I've sold 700 items on eBay with no problems at all. If you list on certain days and stick around for the offers you hardly pay anything. I don't have access to another market I can get a return on that is as good including all the appropriate charges.

Typical example is I sell something for £500, I pay £20 on charges and charge the buyer for the courier. Problem? Add £20 to the asking price!

--- End quote ---
Yep, just what we do here with NZ Trademe as there is no eBay here as Trademe headed them off at the pass by getting a good following here in the early days however their fees are on the steep side so they get tacked onto the asking price !

To add some credence to our listings we add our company name for prospective buyers to find us elsewhere and maybe get a better price.  ;)
EEVblog:

--- Quote from: bd139 on August 15, 2022, 06:09:48 pm ---For ref I use a Yubikey authenticator - that's a completely physically isolated factor.

--- End quote ---

I also use Yubikey for accounts were possible. Haven't actually looked into if ebay supports it though.
thm_w:

--- Quote from: EEVblog on August 15, 2022, 11:27:02 pm ---
--- Quote from: bd139 on August 15, 2022, 06:09:48 pm ---For ref I use a Yubikey authenticator - that's a completely physically isolated factor.

--- End quote ---

I also use Yubikey for accounts were possible. Haven't actually looked into if ebay supports it though.

--- End quote ---

Looks like they offer 2F Email, Ebay app, or Security key options. But they definitely do not push using them.


--- Quote ---At the top left of the Ebay site, where you see your name, click the arrow to bring up a drop down menu and click Account settings.
Under Personal Info, click Sign in and security.
Find the Security key sign in row near the bottom and click Turn on.
--- End quote ---
manicdoc:
The problem with smartphones is that you have to be disciplined to use them as a distinct separate factor. In that, you actually use it as an additional factor and do not use eBay on that device.

Email can be used as an authentication vector but this needs to be proportional to what it is protecting. Also, behind the scenes, there might be other secondary checks done that are not obvious to the end user. For instance, the geo region you are signing in matches whoever clicked the link. Your time of action is consistent with past behavior etc...
RolandK:
Whenever you use the same device for both parts of 2FA it is per se vulnerable.This is the scenario which hijacker try to get control of. Keylogger plus remote control plus the right exploit. Your encryption HW wont help. They just use it.

Only different hardware is safe. Eg. use an old phone for the key sms where you have no other apps. Use a different email account only on a non-surf and work device without stored password for all financial account reset possibilities, e.g on an old pc.

There is just too much illegal money for those who succeed. It is not the question if, but when. The system must only be very common to be a lucrative target. If you believe the propaganda, that this can't happen, this is your first mistake.
Navigation
Message Index
Next page
Previous page
There was an error while thanking
Thanking...

Go to full version
Powered by SMFPacks Advanced Attachments Uploader Mod