Aussie online auction site iaauction has been hacked and all the bids on the website have been made without the consent of the buyers, according to an audit published by a private cybersecurity firm.
The audit was carried out by the firm FireEye, which says it is one of the largest cyber security firms in the world.
“The hack may have taken place because the website’s servers were hacked by unknown parties and some of the bids were submitted to the auction site without the buyer’s consent,” the audit said.
FireEye also found that some auctions are being held in Australia, which may have caused the problem.
It said there was evidence the site’s server was compromised, with the hackers taking control of some of its server infrastructure.
Security expert Brian Krebs, who has been investigating the issue, said the breach was “unlikely to be isolated to a single party”.
“I don’t think that there is any doubt that the hack is being conducted by some outside party,” Mr Krebs said.
“I have no doubt that it’s happening.”
It is the second time in recent months that iaaus has been breached.
Auctioneer Brian Schreier was hacked last year.
Last month, security researcher Matthew Keys hacked iaaos bidding site.
Mr Krebs believes that the breach is a result of a sophisticated, targeted attack, targeting a number of auctions.
In a blog post, he said the company had notified law enforcement about the hack.
However, Mr Krebbs said there is “no indication that anyone has been prosecuted for the hack, and that the site is not yet in any danger of being taken offline”.
Mr Keys said that the attack had not affected the bidding process at iaae, where all the bidding has been carried out without his knowledge.
He said that there were no signs of a third party involvement in the hack and that he had been able to investigate the incident.
What’s more, Mr Keys said he would be “very surprised” if the company was not in breach by now.
Earlier this year, a large breach was discovered at ianas auction, where a large amount of bitcoins had been stolen.
But there was no evidence that anyone had been charged with a crime related to the breach.
After the hack of iaas auction site, a number people in the industry called for the auction house to be shut down.
At the time, Mr Key said the auction was a legitimate business and that his firm was not at risk of losing any bitcoins in the breach, which he said could have been $1.5 million.
Now iaais auction site is being closed.
IAaA is one the largest online auction platforms, with around 1,000 listings.
Its main auction site was hacked in May, which caused the site to shut down indefinitely.
When asked about the security breach, a spokeswoman for iaases said: “As soon as we received the information it was immediately immediately investigated and we immediately closed down the auction.”
What you need to know about cyber security: