Friday, February 23, 2007

Mysterious 'Vladuz' Once AGAIN Hacks eBay

As reported by Dan Goodin in the U.K Register 2/23/07

A hacker has once again managed to pilfer eBay credentials that allow him to masquerade as an official company representative even as he taunts eBay officials on the company's message boards. It's at least the second time the person going by the name Vladuz has pulled off the prank, which is causing many users to question the adequacy of eBay security.

The hacker, said to be living in Romania, claims to have acquired the ability to penetrate the company's perimeter at will. Combined with a rash of hacked accounts, the assertion has created a small but vocal group of users who believe eBay is covering up a massive back door in its defenses.

"Ugh, eBay is so rude *haha*" the intruder said in one post, left late on Thursday, California time.

eBay officials strenuously deny there is any such back door. They admit Vladuz was able to pilfer a limited number of credentials needed to pose as a customer service representative, but insist the servers that administer those functions are balkanized from databases where sensitive information such as customer records are kept.

More here

Is "Ebay security" an oxymoron?....

No comments: