EBay Suffers Another Security Hack

User credentials have been stolen

Online auction house eBay has once again come under fire for its slow response to a reported hack that drove its buyers to a phony "Welcome" page that gathered users' credentials.

News of the hack came from the BBC, which reports that eBay knew about the diversion last night but only took the phony intro page down 12 hours after it was alerted by the UK news agency. A security expert consulted by the BBC identified the hack as a cross-scripting (XSS) attack, a common technique used to break into secure websites.

AW+

WORK SMARTER - LEARN, GROW AND BE INSPIRED.

Subscribe today!

To Read the Full Story Become an Adweek+ Subscriber

View Subscription Options

Already a member? Sign in