I just received an email purporting to be from EBay. The click-here link goes to South Korea. Nothing unusual so far.
The unusual part is that this email included a notice that my card was expired (it was) and I owed $1.15 for a recent auction. Even worse is that it included the last four digits of my old card.
I sent it to EBay and they responded that it is not legit and they will check into it (through an auto-generate email). If EBay has not been hacked what could have exposed this information? I am running SuperAntiSpyware now and have found three things - Adware tracking cookie, Trojan Security Toolbar, and Parasite Spyaxe Installer.
I have been regularly running AVG, Adaware, and Spybot and everything was clean as of the last check a few days ago. I am going to run AVG again and see if a virus is indicated. Any other suggestions? Any idea how?