Seller Account Takeover
Criminals gain unauthorized access to a legitimate marketplace seller account to divert payments, list fraudulent products, or conduct fraud under an established identity.
Also known as: seller account compromise, account hijack, seller credential theft
Last reviewed: 10 June 2026
Seller account takeovers occur when criminals obtain login credentials for an established marketplace seller through phishing, credential stuffing, or social engineering directed at the platform's support team. Once inside, they may redirect payouts to a new bank account, create fraudulent listings leveraging the account's existing reviews, or use the seller's reputation to perpetrate listing-hijacking and non-delivery fraud at scale.
For the legitimate seller, the consequences include withheld payouts, account suspension during investigation, and damage to their seller reputation through negative reviews generated by the fraudulent activity. For buyers, orders placed during the takeover period may not be fulfilled.
Sellers should use strong unique passwords and two-factor authentication, monitor their seller dashboard for unexplained changes to banking details or contact information, and be extremely skeptical of platform-support communications requesting login credentials. Immediate escalation to the platform's seller-protection team is critical when a takeover is suspected.
Examples
- A fraudster gained access to a five-star food seller's account, changed the payout bank details, listed fake electronics, and received payments for weeks before the legitimate seller noticed.
- Social engineering calls impersonating platform support convinced a seller to reset their password on a phishing page, handing account access to attackers.