A new phishing campaign is specifically targeting sellers on Discogs, the popular music marketplace and database. Attackers have constructed a multi‑page deception that begins with a fake human verification check and ends with a cloned Stripe payment form. The screenshots provided document this attack in detail. Understanding each step of the scam is the only …
Category Archives: Marketplaces
11 Red Flags That Prove You’re Being Targeted by a Marketplace Phishing Scam (And How Sellers Can Protect Their Money)
By Cybersecurity Analyst TeamMay 2026 If you sell clothes, electronics, or collectibles on Poshmark, Mercari, eBay, or Depop, you are a prime target for a new wave of sophisticated phishing attacks. The screenshots below show a real-time scam that attempts to drain your bank account – not by hacking, but by tricking you into handing …
How Peer-to-Peer (P2P) Marketplace Scams Use Automation to Drain Bank Cards
Peer-to-peer (P2P) marketplaces have revolutionized how we buy and sell online, but their popularity has also attracted highly sophisticated cybercriminals. Today, scammers no longer operate manually; they use automated scripts and fake brand interfaces to target victims’ bank accounts. Our security team recently discovered and analyzed an active automated campaign targeting P2P platform users. Below, …
Continue reading “How Peer-to-Peer (P2P) Marketplace Scams Use Automation to Drain Bank Cards”
Before You Hit “Verify” On That Depop Alert, Read This Or Watch Your Money Disappear
Who This Guide Is For This article is written specifically for you – a Depop seller who uses the platform to make a living, earn extra cash, or simply clear out your closet. You are not a cybersecurity expert. You do not have time to analyse every link that lands in your inbox. You just …
That “Buyer” Just Sent You A Payment Confirmation? Stop. Read This First Or Watch Your Bank Account Empty.
Who This Guide Is For This is for you – the Tise seller who uses the app to clear out your wardrobe, make some extra cash, or run a small second-hand business. You are not a cybersecurity expert, and you should not have to be one just to sell a pair of jeans online. Tise …
She Was in the Middle of a Sale When the “Account Blocked” Alert Popped Up. What She Did Next Saved Her Savings.
Who This Guide Is For This article is for you – a Jimoty user who regularly buys and sells on Japan’s largest local classifieds platform. You rely on Jimoty to declutter your home, find furniture at a bargain, or earn extra income from second‑hand goods. You are not a cybersecurity expert. You do not spend …
The Golden Rules of Safe Selling: How to Stop the “Account Restricted” Phishing Trap Before It Drains Your Finances
Who This Guide Is For This article is written for you – a Poshmark seller who relies on the platform to earn extra income, clear out a closet, or build a small business. You are not a cybersecurity expert. You have never analyzed a phishing email header in your life. When a notification arrives saying …
Fake Carousell”Safe Payment” Receipt
Phishing Alert: The “Fake Buyer” Marketplace Scam This screenshot demonstrates a common and dangerous phishing tactic used on classifieds and marketplace platforms (like Carousell, Olx, or Avito). Here is a breakdown of how this scam works to steal your banking information: 1. The Domain Deception Look closely at the URL: carousell.83774920.sale/…. 2. The Emotional Hook: …
Pinkoi Fake Suspension Notice detected
These screenshots show a phishing campaign impersonating Pinkoi (a popular e‑commerce platform for designers and handmade goods) and an associated seller named “Amberlithuania”. The scam uses a fake account suspension notice to trick victims into providing full bank card details and personal information. Threat Analysis: Pinkoi Seller Phishing – Fake “Account Suspended” / Card Verification …
IAA phishing page detected (Online car marketplace)
This screenshot shows a phishing page impersonating IAA (Insurance Auto Auctions) , a legitimate online vehicle auction platform. The page is designed to steal victims’ login credentials (email and password) used to access their IAA accounts. Threat Analysis: IAA Phishing – Credential Harvesting How it works:The victim receives a phishing email, SMS, or message claiming …
Continue reading “IAA phishing page detected (Online car marketplace)”