[Closed] ebay hacked?

[url= http://community.ebay.co.uk/t5/Trust-Safety/Javascript-redirect-on-ebay-listings/qaq-p/2653908 ]http://community.ebay.co.uk/t5/Trust-Safety/Javascript-redirect-on-ebay-listings/qaq-p/2653908[/url]

Dodgy listing then, I bet it catches loads of inexperienced web users!

Ooooh wow, that's impressive.

It redirects to st-avt.ru which is a Joomla-powered site. Whois reveals nothing of value. I've reported it to eBay as a 'fraudulent listing'.

Seriously, they allow JavaScript in descriptions? What on earth are they thinking?

Ah wait, it goes via http://denizseki.com/v7/cc/beta.htm which is an ISP in Istanbul. For what good it'll do, I've reported that site to their published abuse@ address.

(*It should go without saying but, DO NOT LOG IN TO THE PAGE ON THIS LINK*)

Weirdly the redirect goes to a [url= http://denizseki.com/v7/cc/ ]h**p://denizseki.com/v7/cc/beta.html*[/url] first, denizseki.com being what looks like a defunct website of a Turkish pop singer, which then runs the code from the beta.html:

<html>
<head>
<META http-equiv=Refresh content="0; URL= http://www.st-avt.ru//bb/ws32/index.ph p">
</head>
</html>

...surprised eBay cannot stop this.

*link to open dir, not html.

Edit: That's what I get for forgetting to hit send 8)

I've just fired it at Sophos' NakedSecurity site too, spread the word. That's shocking.

I've just fired it at Sophos' NakedSecurity site too, spread the word. That's shocking.

Given the seller has [url= http://feedback.ebay.co.uk/ws/eBayISAPI.dll?ViewFeedback2&userid=bethanysamantha&&_trksid=p2047675.l2560&rt=nc&iid=271395580651&sspagename=VIP:feedback&ftab=FeedbackAsSeller ]not sold anything since 2012[/url], looks like a hacked account as well.

Edit: Although they have been buying up to Dec 2013, so who knows...

How many folk must have tried to buy 2 cdj 2000s for £333?
You'd be lucky to get one for double that!