Millions of Americans have turned to online shopping for sheer convenience and more recently, as a means to stay safe from COVID-19. It just makes more sense to order online than taking the risk of exposure at a store.
And the trend has caught on fast. So much so that online shoppers spent more money every single day during the month of April than last year’s Black Friday. Tap or click here to see the staggering numbers.
But, one popular e-commerce site has some users up in arms about some recently discovered shady practices. It’s been running a program in the background to check up on details about your computer without telling you. Below is everything you need to know about it.
Where’s the transparency?
Security researchers at Nullsweep recently discovered a script that automatically runs in the background every time someone visits eBay. What’s actually happening is, eBay is scanning your computer for open ports.
If you’re wondering what exactly that means, ports let different kinds of information pass between your network and the internet. Port 80, for example, is used for general web traffic and port 143 is for IMAP email. If hackers find an exposed networking port on your computer, they can jump right in.
You may also like: Robocalls are about to get a lot worse – here’s why
And this is why it’s believed eBay is scanning users’ computers. A few years ago the site had a huge problem with hackers making fraudulent purchases.
So now, eBay does a scan on 14 different ports, searching for remote access/remote support tools. The tools it’s looking for are all related to Windows, like Windows Remote Desktop, TeamViewer, VNC and more. It appears only Windows machines are impacted by these port scans. Linux users are thought to be safe.
Since the e-commerce site is actually looking to prevent fraudulent purchases you might think this is a good thing. And maybe, in the end, it is. However, it would be nice if eBay was upfront about it and tell users in advance what it’s doing. It’s secrecy like this that breaches users’ trust and eventually leads to them leaving a site.
Can I block port scanning?
Port scanning is not something that can typically be blocked. The fact is, anyone can select any IP address and scan it for open ports.
You may also like: Microsoft warns of massive phishing attack targeting PCs
- On your computer, open Chrome
- Go to ebay.com
- To the left of the web address, click the lock icon: Lock
- A menu will appear that shows Certificate, Cookies, Site settings. Click Site settings
There is a relatively new browser available called Brave and it has some security protections that other browsers don’t offer. It makes blocking cookies easy, tracks software and removes ads.
With its easy-to-use controls, it can also block phishing. Turn on the ad blocker and the phish blocker at the same time and you’ll get to see just how bad some sites are. Tap or click here for details on Brave and other mobile browser options.
As we said, port scanning isn’t the worst offense you’ll find online but it would be nice if companies like eBay were more transparent on how it operates. It just comes down to trust, and that’s important to have with websites you frequent.