eBay user information has been at risk for months and not weeks after a chat log from one user revealed that the password scam has been around for a lot longer than first thought.
One user that contacted the BBC explained that he found the problem as early as February 2014 and reported it to eBay’s support staff in the form of a chat log that outlined the problem in some detail.
“I was just browsing in Digital Cameras and came across a password-harvesting scam," wrote eBay user Paul Castle in an online chat with support staff.
He went on to say that once the link has been clicked it patches the users straight to a password harvesting scam page that attempts to steal information from the user in question.
"This is potentially a big security problem for eBay users," he stated, "There could be hundreds."
eBay replied to Castle by stating that the problem had already been reported to “higher authorities” yet despite this taking place, there are still various listings on the site that are trying to exploit the same issue.
When security researchers first uncovered the vulnerability earlier this week the firm was heavily criticised for failing to react quickly to the problem and the news that it was around for even longer than first thought gives those researchers even more fuel.