|Fri Sept 19 2014 20:23:48|
BBC Reports on Security Flaw Gives eBay Black Eye
By: Ina Steiner
The BBC is back with a second story this week about a security flaw on eBay. We reported the BBC's original article from 2 days ago on the EcommerceBytes News forum. Today, the BBC is out with a follow-up article that claims the security flaw has been around for 6 months.
What's most damning about the report is that eBay told the BBC in its first story the flaw was an isolated incident, but the BBC claims to have found multiple listings from multiple users exploiting the same vulnerability.
"Furthermore, several readers contacted the BBC detailing complaints they had made to the site," including a user who provided the news service with a transcript from February in which he explained the issue in detail to eBay support staff, who told the user they had escalated his report to "higher authorities."
Indeed, we've reported on such problems going back at least as far back as 2006.
But on top of the eBay security breach and recent outages, this is not the kind of publicity eBay can shrug off.
Update 9/22/14: BBC continues to hammer away at eBay over this issue, here is its latest article from September 22nd.