Online auction site eBay
has been targeted by identity thieves, who are wielding a botnet that
uses brute force to uncover valid account login info, an Israeli
security company said Monday.
The attacks against eBay may have started as long ago as early
August, said Ofer Elzam, of Aladdin Knowledge Systems Ltd. Elzam and
his researchers have not been successful in notifying eBay of their
According to Elzam, the product manager of Aladdin's eSafe
threat protection line, the brute force attacks are launched by a large
botnet that the identity thieves have built using a sophisticated,
multi-stage campaign that begins with compromised legitimate Web sites.
Story continues at computerworld.com