{"id":35165,"date":"2020-05-26T12:39:14","date_gmt":"2020-05-26T12:39:14","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/"},"modified":"2020-05-26T12:39:14","modified_gmt":"2020-05-26T12:39:14","slug":"ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/","title":{"rendered":"eBay users spot the online auction house port-scanning their PCs. Um&#8230; is that OK?"},"content":{"rendered":"<p>Users visiting eBay have spotted that the website runs port scans against their computer, using the localhost address to inspect what may be running on your machine.<\/p>\n<p>Fraud is a big issue for eBay and if the purpose of scanning for remote-access ports is an attempt to detect criminals logged into a user&#8217;s computer in order to impersonate them on the tat bazaar, it could have some value. The behaviour, however, was described as &#8220;clearly malicious&#8221; <a target=\"_blank\" href=\"https:\/\/nullsweep.com\/why-is-this-website-port-scanning-me\/\" rel=\"noopener noreferrer\">by security researcher Charles Belmer<\/a>.<\/p>\n<p>The script attempts WebSocket connections to a number of ports, including 3389 (Microsoft remote desktop), 5931 (Ammy Admin remote desktop), 6333 (VNC remote connection), 7070 (realAudio and Apple QuickTime streaming) and more. The script is running locally so it is not testing for ports exposed to the internet, but rather for what is running on your local network. The port scanning script does not always run. We have only seen it run on Windows, and normally only on the first visit to eBay after some unspecified period.<\/p>\n<div class=\"CaptionedImage\" readability=\"10\"><a href=\"https:\/\/regmedia.co.uk\/2020\/05\/26\/scanning2.png\" target=\"_blank\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2020\/05\/26\/scanning2.png?x=648&amp;y=491&amp;infer_y=1\" alt=\"The script used by eBay, or its partner LexisNexis, to scan ports on your computer\" title=\"The script used by eBay, or its partner LexisNexis, to scan ports on your computer\" height=\"491\" width=\"648\"><\/a><\/p>\n<p class=\"text_center\">The script used by eBay, or its partner LexisNexis, to scan ports on your computer (click to enlarge)<\/p>\n<\/div>\n<p>Developer Dan Nemec <a target=\"_blank\" href=\"https:\/\/blog.nem.ec\/2020\/05\/24\/ebay-port-scanning\/\" rel=\"noopener noreferrer\">used browser debugging tools<\/a> to trace what is going on \u2013 a job made harder, he said, by JavaScript code that is &#8220;re-obfuscated on every page load&#8221; so that variables names change every time.<\/p>\n<p>It is odd, though: not all the code is obfuscated, so if the script&#8217;s creators really wanted to cover their tracks they could have done a better job.<\/p>\n<p>Nemec did discover several points of interest, however. One is that the source of the script, called check.js, is src.ebay-us.com, which is a CNAME record pointing at h-ebay.online-metrix.net, which belongs to an organisation called ThreatMetrix Inc, part of LexisNexis Risk Solutions.<\/p>\n<div class=\"CaptionedImage\" readability=\"9.3076923076923\"><a href=\"https:\/\/regmedia.co.uk\/2020\/05\/26\/threatmetrix.png\" target=\"_blank\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2020\/05\/26\/threatmetrix.png?x=648&amp;y=324&amp;infer_y=1\" alt=\"Following the trail: the script is served by online-metrix.net, which is owned by ThreatMetrix\" title=\"Following the trail: the script is served by online-metrix.net, which is owned by ThreatMetrix\" height=\"324\" width=\"648\"><\/a><\/p>\n<p class=\"text_center\">Following the trail &#8230; The script is served by online-metrix.net, which is owned by ThreatMetrix, according to tools at <a target=\"_blank\" href=\"https:\/\/mxtoolbox.com\/SuperTool.aspx?action=a%3asrc.ebay-us.com&amp;run=toolpage\" rel=\"noopener noreferrer\">MXToolbox<\/a><\/p>\n<\/div>\n<p>Following the scan, Nemec observed, the web page requests images, again from the Threat Metrix domain, which return a 204 code meaning &#8220;no content&#8221;. The payload is in the argument accompanying the requests, which when decrypted contains the results of the port scan and other information, including the user agent (browser identifier), public IP address, and &#8220;other data, signatures and things I don&#8217;t recognize,&#8221; said Nemec.<\/p>\n<p>LexisNexis Risk Solutions provides &#8220;powerful linking technology&#8230; to manage risk and find opportunities,&#8221; according to its home page, and promises to help companies &#8220;walking the tightrope between fraud and friction&#8221;, as they try to give the customer a smooth online experience while also minimising fraud.<\/p>\n<p>In a <a target=\"_blank\" href=\"https:\/\/risk.lexisnexis.com\/insights-resources\/white-paper\/fraud-in-communications-media-and-mobile-part-4\" rel=\"noopener noreferrer\">white paper<\/a> the company talks about how to &#8220;gather ample &#8216;trust data&#8217; around customers and their linked devices&#8221; for which it uses techniques including &#8220;device fingerprinting and linking across devices&#8221;. This may not refer specifically to the technology in the eBay script, but it is obvious that the company is in the business of gathering data for both fraud prevention and digital marketing.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2017\/02\/06\/security.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"access\"><\/p>\n<h2 title=\"One rule for banks, another for us, says white hat\">Bank on it: It&#8217;s either legal to port-scan someone without consent or it&#8217;s not, fumes researcher<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2018\/08\/07\/halifax_bank_ports_scans\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>There is no suggestion that eBay is trying to make use of services like VNC to connect to your computer. While it is likely eBay is using the practice to detect fraud, there are a number of issues concerning privacy, consent and security. <em>The Register<\/em> has <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2018\/08\/07\/halifax_bank_ports_scans\/\" rel=\"noopener noreferrer\">come across ThreatMetrix before<\/a>, when Halifax bank was found to be conducting port scans, with some claiming that the practice was in breach of the UK&#8217;s <a target=\"_blank\" href=\"https:\/\/www.legislation.gov.uk\/ukpga\/1990\/18\/contents\" rel=\"noopener noreferrer\">Computer Misuse Act<\/a>. The bank retorted that it was perfectly legal and argued that the port scans helped it to pick up evidence of malware infections on customers&#8217; systems.<\/p>\n<p>The EU&#8217;s General Data Protection Regulation (GDPR) &#8211; <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2020\/02\/20\/google_shifting_uk_data_to_us\/\" rel=\"noopener noreferrer\">already transposed into law in the UK<\/a> &#8211; is another relevant piece of legislation, setting out the conditions for when gathering personal data is lawful and giving individuals rights to obtain and erase personal data in most circumstances.<\/p>\n<p>There is also the question of under what circumstances web browsers should allow requests to services running on localhost. A year ago, the Zoom web-conferencing software was found to using a request to a local web server to open its application from a web page, with the <a target=\"_blank\" href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=951540\" rel=\"noopener noreferrer\">result<\/a> that &#8220;a malicious attacker is able to forcibly join anyone with the vulnerable software installed into a video call with their camera active by default&#8221;.<\/p>\n<p>We have asked both eBay and LexisNexis for comment. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1946\/-8720\/how-to-simplify-data-protection-on-amazon-web-services?td=wptl1946\">How to simplify data protection on Amazon Web Services<\/a><\/p>\n<p>READ MORE <a href=\"https:\/\/go.theregister.co.uk\/feed\/www.theregister.co.uk\/2020\/05\/26\/ebay_port_scans_your_pc\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fraud is a big issue for etailer, but there are privacy and consent concerns too Users visiting eBay have spotted that the website runs port scans against their computer, using the localhost address to inspect what may be running on your machine.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":35166,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-35165","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-05-26T12:39:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png\" \/>\n\t<meta property=\"og:image:width\" content=\"648\" \/>\n\t<meta property=\"og:image:height\" content=\"491\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"eBay users spot the online auction house port-scanning their PCs. Um&#8230; is that OK?\",\"datePublished\":\"2020-05-26T12:39:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/\"},\"wordCount\":768,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/\",\"name\":\"eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png\",\"datePublished\":\"2020-05-26T12:39:14+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png\",\"width\":648,\"height\":491},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"eBay users spot the online auction house port-scanning their PCs. Um&#8230; is that OK?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/","og_locale":"en_US","og_type":"article","og_title":"eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-05-26T12:39:14+00:00","og_image":[{"width":648,"height":491,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"eBay users spot the online auction house port-scanning their PCs. Um&#8230; is that OK?","datePublished":"2020-05-26T12:39:14+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/"},"wordCount":768,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/","url":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/","name":"eBay users spot the online auction house port-scanning their PCs. Um... is that OK? 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png","datePublished":"2020-05-26T12:39:14+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok.png","width":648,"height":491},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/ebay-users-spot-the-online-auction-house-port-scanning-their-pcs-um-is-that-ok\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"eBay users spot the online auction house port-scanning their PCs. Um&#8230; is that OK?"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/35165","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=35165"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/35165\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/35166"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=35165"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=35165"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=35165"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}