• If you receive email that includes links and requests confidential information – be suspicious. A spoof email pretending to be from eBay typically contains a link that takes you to a fake website and requests that you sign in and submit personal and account information. We will never ask you for your password or confidential information.

• When in doubt, use the eBay website. Open a new browser window, type the address of the site on which you registered, sign-in, and use the "site map" link to navigate to where you want to go.

• Look at the web address (URL). Never enter your eBay User ID and password on a page that doesn't have ebay.co.uk or ebay.ie immediately before the first forward slash (/). If the address includes additional characters prior to the forward slash such as "@," dashes, etc., it's not an eBay page. Even if the web address contains the word "eBay", it may still be fake.

• 
  Check for a green Web address (URL) bar. eBay uses Extended Validation Secure Sockets Layer (EV SSL) technology. If you've upgraded to a browser with the latest anti-phishing capabilities, look for a green Web address bar to confirm that you are on a secure page before entering sensitive information.
  
  
  For a list of international sites, see Recognising Spoof (Fake) Websites.

Security Tip: You can use eBay’s free Toolbar with Account Guard to warn you when you are on a potentially fraudulent website. Learn more about Account Guard.