Fraudsters send fake emails, which appear to come from well-known companies, in the hope that recipients will reply or click on a link contained in the email, and then provide confidential information including passwords or bank or credit card details.
How to report spoof and phishing emails
If you receive a suspicious email, you should report it to us immediately. Here's how:
- Don't click any links in the email or open any attachments.
- Forward the message to us as an attachment at email@example.com.
We'll let you know that we received the email.
To help us investigate the source of a spoof or phishing email, please ensure you include the message as an attachment.
Characteristics of spoof or phishing emails and websites
A phishing email pretending to be from eBay typically contains a link that takes you to a fake website. There, you'll usually be asked to sign in, and submit personal and account information.
These emails often include the eBay logo and a fake eBay address in the "From" line. Pay attention to signs that the email might be a spoof.
Here are some typical traits of spoof emails and websites:
- Asking for confidential information
- An urgent tone that asks you to act quickly
- Unsolicited attachments
- A generic greeting, like "Attention eBay member"
- A web address that looks like eBay, but which may have a typo or extra numbers and letters (like http://signin-ebay.com or http://firstname.lastname@example.org)
If you receive a legitimate email from eBay, you can expect that:
- It will typically contain your eBay username
- We won't ask you to provide confidential information like your password or credit card details via email or over the phone
- We'll only include links for convenience. No link will require you to submit confidential information on the next page
- We won't include attachments. If you receive an unsolicited email with an attachment, don't open it
- We won't ever use threatening language or include specific threats