I have been receiving this phishing attack for several days now, which does not seem to be getting filtered by my ISP's spam service. So just to warn everyone that is getting this to promptly delete it, here it is...
Mime-Version: 1.0 Content-Type: text/html; boundary="xlcuiBo847gtaDvjhSdgF983r" X-Mailer: ebay
Hello eBay user,
This is a courtesy reminder that the following credit/debit card on
file for your eBay account will soon expire:
EBay Account ID: E000125151608-702
Card: MSC XXXX-XXXX-XXXX-XXXX
Expiration Date: 00/00
Date Reminder Issued: 122404
In order to receive uninterrupted service, please update this
information by follow the link below:
https://login.personal.ebay.com/logon/logon.asp?dd=1&Update&Your&Info
To update your credit/debit card information:
- Go to the eBay Home page
- Select My eBay and logon with your eBay User ID and Password
- Select the Accounts Tab
- Select Use a credit card for automatic payments (you will need
to logon again)
- Update your credit card information following instructions on
the next page
Thank you for using eBay.
Regards,
eBay International AG
If you look closely at the link, you'll see it's pointing to http://211.252.136.9/wa/index.php. The email is coming from "aw-confirm@ebay.com" (twice) with a return path to "webmaster@mail.niedereder.da.ru". It's not a particularly crafty phish, but people still get tricked.