Another security breach at eBay has led to more than 1,000 customers of Stubhub having their accounts broken into.
Unlike the last time though, this problem hasn’t come about through the company’s servers being hacked. Instead, the attacks were carried out with the help of user IDs that the hackers had obtained in other attacks on other sites or directly on people’s computers. It seems that the hackers gathered a large number of user passwords for the site and then started accessing those accounts in 2013.
Once they had broken into the accounts, the people behind the latest fraudulent activity made purchases on the accounts they were illegally using. It wasn’t long before the security team at the site noticed the unusual activity on a number of accounts.
A Worldwide Police Investigation
Glenn Lehrmann is a spokesman for Stubhub and he said that they were now working with law enforcement agencies from different countries in order to help investigations. The City of London Police, the Royal Canadian Mounted Police and the US Secret Service were all involved in investigating the fraud and arrests have already been made. He went on to point out that there have been “no intrusions” into the Stubhub system.
He confirmed that as soon as the fraudulent transactions were noticed the customers who had been affected were contacted, the money refunded and help given so that customers could change their passwords. It wasn’t confirmed how much money was involved in the transactions.
Have you been affected by this attack on Stubhub or by some other online fraud?