Comments on: eBay plug-in Auctiva hit by virus http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/ Top Technology news Mon, 13 Feb 2012 11:40:13 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: karen paxton http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/comment-page-1/#comment-194044 karen paxton Mon, 06 Jul 2009 16:22:48 +0000 http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/#comment-194044 my computer is seriouslyu affected--resulting in multiple listings of my auctions rather than just one. and it does not do it all at once. i have spent hours removing ramdom listings of my listings. i finally realized it was my laptop and not desk top--a few days ago. so i am able to list on one computer without this happening. my computer is seriouslyu affected–resulting in multiple listings of my auctions rather than just one. and it does not do it all at once. i have spent hours removing ramdom listings of my listings. i finally realized it was my laptop and not desk top–a few days ago. so i am able to list on one computer without this happening.

]]> By: Ebay Seller http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/comment-page-1/#comment-160861 Ebay Seller Wed, 25 Feb 2009 21:36:50 +0000 http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/#comment-160861 This would be to Daniel Buchner from Auctiva... You said, "as a company, we strived to handle this issue in a candid, responsive and responsible manner." Umm, really? The advice to people to change their security settings so that they could go in and navigate the Auctiva website. That was good advice?????????????????????? Then, giving the all clear, because Google had cleared Auctiva, only to STILL have trojans that ended up in the site going offline until fixed, BUT leaving listings, scrolling galleries etc still running.That was responsible????????????? Oh the site was still infected, so we took it offline, but lets leave our customers pics, listings & scrolling galleries in place, DUH! You covered your sorry a$$ and didn't give 2 hoots for the sellers who had Auctiva listings in place during all of this. There is a large lot of sellers and buyers alike on eBay discussion boards that were, let me repeat, WERE infected. Some cannot even bring their pc's up now. They seemed to have crashed for good. Buyers are going to remember that what infected their pc was clicking on a picture in a sellers listing that was hosted by Auctiva. A lot of buyers will now turn away from any listing that uses Auctiva. As a seller, and a (soon to be former) Auctiva customer, you have lost my business and a lot of others. I feel bad for the people who are now dealing with crashed computers and no money to fix them or replace them or that rely on their pc to earn a supplemental income on eBay! You can read more here: http://forums.ebay.com/db2/topic/Seller-Central/Auctiva-Malicious-Software/520092591 This would be to Daniel Buchner from Auctiva…

You said, “as a company, we strived to handle this issue in a candid, responsive and responsible manner.”

Umm, really? The advice to people to change their security settings so that they could go in and navigate the Auctiva website. That was good advice??????????????????????

Then, giving the all clear, because Google had cleared Auctiva, only to STILL have trojans that ended up in the site going offline until fixed, BUT leaving listings, scrolling galleries etc still running.That was responsible?????????????

Oh the site was still infected, so we took it offline, but lets leave our customers pics, listings & scrolling galleries in place, DUH! You covered your sorry a$$ and didn’t give 2 hoots for the sellers who had Auctiva listings in place during all of this.

There is a large lot of sellers and buyers alike on eBay discussion boards that were, let me repeat, WERE infected. Some cannot even bring their pc’s up now. They seemed to have crashed for good.

Buyers are going to remember that what infected their pc was clicking on a picture in a sellers listing that was hosted by Auctiva. A lot of buyers will now turn away from any listing that uses Auctiva.

As a seller, and a (soon to be former) Auctiva customer, you have lost my business and a lot of others.

I feel bad for the people who are now dealing with crashed computers and no money to fix them or replace them or that rely on their pc to earn a supplemental income on eBay!

You can read more here:

http://forums.ebay.com/db2/topic/Seller-Central/Auctiva-Malicious-Software/520092591

]]> By: Daniel J. Buchner http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/comment-page-1/#comment-160710 Daniel J. Buchner Tue, 24 Feb 2009 23:33:17 +0000 http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/#comment-160710 I would like to give a current status update on this issue and a bit more on what occurred late last week. We discovered the presence of malware on a few of the Auctiva.com servers on February 19th. This caused Google to flag Auctiva as a dangerous site. Our Systems Engineers identified the location of the malware and immediately took the infected servers offline. We worked to correct security vulnerabilities and eliminate the possibility of further infection. We resolved to only bring the site back online once we were confident we could provide the same high level of safety and security for our customers that we have for the past 10 years. In the early morning hours of Tuesday the 24th, we brought Auctiva.com back online with a reduced number of servers, and are in the process of adding more to our network to improve site speed. Facts: • Auctiva is a 10-year old software company comprising several Web sites and products. With more than 80 employees and hundreds of thousands of registered users, Auctiva remains a trusted eBay partner posting millions of eBay listings every month. • Auctiva takes the issue of security very seriously. We temporarily took the site offline while we worked to correct security vulnerabilities and eliminate the possibility of further infection. We committed to only bring the site back up once we were confident we could provide a high level of confidence in the safety and security of our site for our users. • As a company, we strived to handle this issue in a candid, responsive and responsible manner. Updates have been available throughout the course of this issue at http://community.auctiva.com/eve/forums/a/frm/f/1081020411 and this user forum is where we will continue to inform our users with future news/updates. • Throughout this process, users’ listings, images, templates and scrolling galleries remained available. • eBay Security Teams are helping Auctiva to ensure the strictest level of safety and security on Auctiva.com. eBay has been closely working with us on this matter to thoroughly ensure users are not affected by this sort of malware intrusion again. • Existing Threat? After the threat was identified late last week, we took the appropriate and responsible corrective action. Normal operation has since been restored and there is no risk to users visiting any portion of the Auctiva.com site. If there’s a concern about the security of our forums: Our discussion forums were always safe to visit. The forums (http://community.auctiva.com/eve/forums/a/frm/f/1081020411) are hosted on different servers than Auctiva.com and were never compromised. Similar attacks have been made on other large Web sites recently that used the same methodology for malicious code injection. Other targets have included: • CBS (http://www.pcworld.idg.com.au/article/269283/cbs_website_bitten_by_iframe_hack?fp=512&fpid=1871683061&rid=1) • Monster.com (http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9048019) I would be happy to answer any questions or clarifications you may have. Auctiva considers this matter our top priority and would like to ensure our user base, and the public at large, that we are, and will remain, a trusted eBay partner. Daniel J. Buchner Product Manager Auctiva Corp. I would like to give a current status update on this issue and a bit more on what occurred late last week.

We discovered the presence of malware on a few of the Auctiva.com servers on February 19th. This caused Google to flag Auctiva as a dangerous site. Our Systems Engineers identified the location of the malware and immediately took the infected servers offline. We worked to correct security vulnerabilities and eliminate the possibility of further infection. We resolved to only bring the site back online once we were confident we could provide the same high level of safety and security for our customers that we have for the past 10 years.

In the early morning hours of Tuesday the 24th, we brought Auctiva.com back online with a reduced number of servers, and are in the process of adding more to our network to improve site speed.

Facts:
• Auctiva is a 10-year old software company comprising several Web sites and products. With more than 80 employees and hundreds of thousands of registered users, Auctiva remains a trusted eBay partner posting millions of eBay listings every month.
• Auctiva takes the issue of security very seriously. We temporarily took the site offline while we worked to correct security vulnerabilities and eliminate the possibility of further infection. We committed to only bring the site back up once we were confident we could provide a high level of confidence in the safety and security of our site for our users.
• As a company, we strived to handle this issue in a candid, responsive and responsible manner. Updates have been available throughout the course of this issue at http://community.auctiva.com/eve/forums/a/frm/f/1081020411 and this user forum is where we will continue to inform our users with future news/updates.
• Throughout this process, users’ listings, images, templates and scrolling galleries remained available.
• eBay Security Teams are helping Auctiva to ensure the strictest level of safety and security on Auctiva.com. eBay has been closely working with us on this matter to thoroughly ensure users are not affected by this sort of malware intrusion again.
• Existing Threat? After the threat was identified late last week, we took the appropriate and responsible corrective action. Normal operation has since been restored and there is no risk to users visiting any portion of the Auctiva.com site.

If there’s a concern about the security of our forums: Our discussion forums were always safe to visit. The forums (http://community.auctiva.com/eve/forums/a/frm/f/1081020411) are hosted on different servers than Auctiva.com and were never compromised.

Similar attacks have been made on other large Web sites recently that used the same methodology for malicious code injection. Other targets have included:
• CBS (http://www.pcworld.idg.com.au/article/269283/cbs_website_bitten_by_iframe_hack?fp=512&fpid=1871683061&rid=1)
• Monster.com (http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9048019)

I would be happy to answer any questions or clarifications you may have. Auctiva considers this matter our top priority and would like to ensure our user base, and the public at large, that we are, and will remain, a trusted eBay partner.

Daniel J. Buchner
Product Manager
Auctiva Corp.

]]> By: New User http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/comment-page-1/#comment-160486 New User Mon, 23 Feb 2009 20:22:52 +0000 http://tech.blorge.com/Structure:/2009/02/23/ebay-plug-in-auctiva-hit-by-virus/#comment-160486 Hi Just to let you know, I was looking for an update and thought that I'd better let you know that when accessing the Auctiva website this morning 23/03/2009 (England) Zonealarm found the Trojan-Click Virus. They obviously still have it Kind Regards J Hi

Just to let you know, I was looking for an update and thought that I’d better let you know that when accessing the Auctiva website this morning 23/03/2009 (England) Zonealarm found the Trojan-Click Virus. They obviously still have it

Kind Regards

J

]]>