Recognizing spoof (fake) eBay websites
Fake (also called "spoof" or "phishing") emails and websites try to look like they're from real companies. They're a common way criminals try to steal your personal information. When you get an email or visit a website that asks you for personal information, especially things like passwords and account numbers, be very cautious.
If you receive a fake email, forward it to
If you find a fake website that is trying to steal personal information, report it by emailing the URL to firstname.lastname@example.org
How to tell if an email is really from eBay
The easiest way to make sure an email is from us is to check your messages in My eBay. Go to My eBay, and then click the Messages tab. If you don't see the same message there, the email is fake.
Signs that an email is fake
Fake emails often include the eBay logo and a fake eBay address in the "From" line (for example, "From: email@example.com"). The email might have copied text from real eBay emails like notifications of problems with your account, Ask a question emails, or offers to become an eBay PowerSeller. But just because an email looks real doesn't mean it is. Here are some signs to watch out for:
Fake emails often ask you to reply to the message with confidential information.
We won't ask you to provide confidential information by email.
They often have an urgent tone and threaten account suspension if you don't update your information right away.
Any messages from us requesting information will also be in the Messages tab in My eBay. If an email seems suspicious, check to see if it's there. If it's not, it's fake.
They might include attachments.
Our emails never include attachments. If you receive a message with an attachment, don't open it.
They often have a generic greeting like "Attention eBay member."
Our emails usually greet you by the first and last name you registered on your eBay account, and your eBay user ID.
Recognizing real eBay web pages
Fake emails often include a link to a fake web page that looks very real. These fake pages are used by criminals to collect personal information. If you visit a page and you aren't sure whether it's really an eBay web page, especially if the page requests personal information from you, these tips can help:
Watch out for fake URLs (web addresses)
Even if the web address contains the word "eBay", it might not be an eBay website. Real eBay web addresses have ".ebay.com/" in them. There won't be anything between the period and "ebay" and there won't be anything after the ".com" and the first forward slash (/).
Examples of real eBay addresses:
Examples of fake addresses:
If you're signing in with your eBay user ID and password, check that the web address starts with https://signin.ebay.com/. Look for the "s" in "https," which indicates that you're signing in to a secure server.
When in doubt, start at the eBay home page
If you want to sign in to eBay or enter personal information, the safest way is start at the eBay home page. Type www.ebay.com in your browser and go from there.
Be sure and keep your web browser up to date. The latest versions of Internet Explorer
have built-in tools to protect you.
Make sure you're on a real eBay sign in page
Before you sign in to eBay, make sure you're really on our website by checking the web address (URL) on the sign in page. Other eBay companies and international sites have different web addresses for their sign in page.
Sign in web addresses for eBay and our other companies:
Sign-in web addresses for our international sites
International eBay websites include letters that tell what country the site is associated with. For example, the addresses for eBay France contain .fr instead of .com, and the addresses for eBay Germany contain .de.