Lama.com stolen domain. DO NOT BUY!

[DN BROKER]

CureCancer,
You can use the strongest password and the best email provider but still lose your godaddy account. Just before your message I posted a detailed description how this happens. It has nothing to do with your password or email. It is a security fault on godaddy side. Godaddy makes it very easy for thieves. The only thing they need to know is the domain they want to steal. They don't need to know anything else. Check method 1 in my message above.

Your methods that you have posted is more harmful to our industry then godaddy. With every change request, GoDaddy will email your first ADMIN email associated with the account!!!!!!!!!!!!!!!!!!!!!!!! Even a simple email forward change will notify me instantly on my blackberry.... your methods are pointing out how to steal a domain more then how to avoid being a target! Posting such methods for the public will only result for wanabe hackers attempt a hack on your domain!

GoDaddy is by fart the best option for 99.81% of you Domainers who own nothing but reg fee crap and for owners like Adam (DnForum Owner) who also has domains with godaddy.

What other options do Domainers have to keep their domains with, no one - the rest of the clowns and thieves aka REGISTRARS steal and charge fee's that can't even be as good as what GoDaddy offers the entire world. I have experienced trouble with GoDaddy and they reversed all account changes on domains that were effected by the hack/theft! It took 3-5 business days but the stolen domains were returned.

---------- Post added at 06:51 PM ---------- Previous post was at 06:49 PM ----------

what i mean to say is that even Domainers with Value Domains have their domains with GD that includes the owner of this forum, the last i read!

 

[Theo]

GoDaddy is by fart the best option

Freudian slip?

 

[erdinc]

Obviously you are not reading. There is no change request with method 1 that I posted. It is a simple form where you upload a scan of your id:
https://supportcenter.godaddy.com/DomainServices/ChangeRequestPage.aspx?prog_id=GoDaddy
The form assumes your admin email is unreachable (maybe hacked). Therefore godaddy does not send any email to your admin email.

Anybody who can use photoshop can create a fake image of an id. That is all that is needed, an image file. Open that form and check in detail.

The people who are stealing domains are experts of that form. They know every detail of it. You don't even bother looking and reading it. Instead you post some useless crap in forums.

 

[DN BROKER]

Obviously you are not reading. There is no change request with method 1 that I posted. It is a simple form where you upload a scan of your id:
https://supportcenter.godaddy.com/DomainServices/ChangeRequestPage.aspx?prog_id=GoDaddy
The form assumes your admin email is unreachable (maybe hacked). Therefore godaddy does not send any email to your admin email.

Anybody who can use photoshop can create a fake image of an id. That is all that is needed, an image file. Open that form and check in detail.

The people who are stealing domains are experts of that form. They know every detail of it. You don't even bother looking and reading it. Instead you post some useless crap in forums.

You are the one with the crap post.... I did read your methods and thanks for publishing it online for all the scumbags to learn the 101 on how to steal a domain... its pathetic method and GoDaddy would reverse the account change... and for all the readers reading this, it takes 5-8 days for domain transfers and 60 day restriction on domain account changes... either way you are safe with GoDaddy.... you will have enough time to stop the theft. If your a Domainer who checks on his or her domain once every 10 years then you need to call godaddy and request extra security measures.... otherwise your silly exposure of GD's security issue is only feeding and providing the steps for any idiot to take a chance in stealing your domain.... if your going to crap on my words then have the courtesy wipe your crap first.

---------- Post added at 08:12 PM ---------- Previous post was at 08:11 PM ----------

freudian slip? :d

:d

---------- Post added at 08:22 PM ---------- Previous post was at 08:12 PM ----------

Instead you post some useless crap in forums.

By the way I've contributed in our community more then you can count, I assure you my bold attitude on forums goes further then exposing the crap you have on this thread.

 

[Embrand]

No, it is not because they are big. It is because they have very stupid methods to gain access to accounts where a person claims to have lost his password. Recently I checked what methods thieves are using. I found 3 methods. The details are below.


Method 1:
Open this page and spend a minute to check what you see:

https://supportcenter.godaddy.com/DomainServices/ChangeRequestPage.aspx?prog_id=GoDaddy

What you see is a form to change your account email or to push your domain from your account to another. All they ask is a screenshot of a photoshop file where the scammer has typed your name in one of those documents:

• State issued driver's license
• State issued photo identification card
• Passport
• Military photo identification

Yes, you read it correct. A scammer can take any image file of any photo ID and open it in photoshop and type your name. Then save the image file and upload it using that form. Godaddy will change your account email to any email address the scammer submits in the form. On that page there is a button that says "chose file". The scammer would click this button to upload a fake image file.

You might think that's not possible. Think again. Late 2009 a 3 letter domain PDN dot com was stolen with this method. You can check it here.


Method 2:
Except that method you see above, there is another method which involves email forwarding your whois or account email address to scammers mail address. The simply asks your domain registrar to set email forwarding. You might think the support staff wouldn't do it. Think again.

Check out how sweet.com and direction.com was stolen:
http://preventdomaintheft.com/2008/03/08/social-engineering-is-the-easiest-way-to-steal-domains/
This article was written by the original owner of direction.com who had this domain stolen but recovered it later.


Method 3:
The scammer will just email godaddy directly from his own email address and ask them to change your account email to his. Surprisingly godaddy will do this if they get any of the following:

your four-digit Shopper PIN or,
your 4 digit Paypal Billing ID or,
the last 6 digits of the credit card on file

Especially, if you have used your credit card on any website where you bought a domain related service, for instance if you bought domains at another registrar, if you bought domainer software at another site they would know that you are a domainer and they would know the last 6 numbers of your credit card. This is the only information needed:

http://www.warriorforum.com/main-in...ussion-forum/32077-godaddy-security-hole.html

That is pretty scary... Especially method 1 - never saw that form at their site before. Thanks for sharing.

 

[DomainsInc]

The people who are stealing domains are experts of that form. They know every detail of it. You don't even bother looking and reading it. Instead you post some useless crap in forums.

sure but not everyone who wants to steal is an expert and that post would help them figuring out what they didn't.

 

[TheLegendaryJP]

Sorry to hear this situation, any update?

Also I thought when a name pushed within GD and rant info changed there was a lock for XX # of days, how could someone already buy it right away ? Did the new owner simply get the account handed to them and if so I may consider the new owner is the original theif, jus sayin

 

[Theo]

JP, you can push from any GD account to another; the 60 day lock that GD imposes to domains upon registrant change only affects transfers out to another registrar.

 

[oveber]

Since it`s a netshop you can contact some of the companies that lamabutikken.com deal with and explain how they works. Then i think this companies will stop dealing with them.

 

[Stian]

Since it`s a netshop you can contact some of the companies that lamabutikken.com deal with and explain how they works. Then i think this companies will stop dealing with them.

The company (lamabutikken) was totally unaware that this was a stolen domain. I will post more details if it's cool with tetra.

 

[oveber]

The company (lamabutikken) was totally unaware that this was a stolen domain. I will post more details if it's cool with tetra.

Stian, this does`nt make sence. First they ask a friend, for joke, to hack/steel the name and after the friend have done it they says they will buy it. Thats only to get out of troubble.

 

[Stian]

Stian, this does`nt make sence. First they ask a friend, for joke, to hack/steel the name and after the friend have done it they says they will buy it. Thats only to get out of troubble.

The hacker sent that e-mail as far as I know, not the buyer.

 

[oveber]

The hacker sent that e-mail as far as I know, not the buyer.

Thanks, i hope you come back with more.

 

[tetrapak]

The company (lamabutikken) was totally unaware that this was a stolen domain. I will post more details if it's cool with tetra.

I got the worst of the worst scammers. After he failed to get "his" $7.5k that he already felt in his wallet, he thought I'm responsible for his "misery" and he started ruining my online business.

First he deleted close to 100 websites from my host (I saw it happening in front of my eyes, while I was on the phone with my host telling them to try to stop it - too late, but we had backup - although not the most fresh).

Then he went on to spend my money through my hacked Moniker account (I had no idea my CC was saved on file there). He spent around $800 in under 20 minutes, until I was able to block my credit card.
He was buying domains like TETRAPAK-F*CKED.NET,TETR*-IS-DIED.COM, but tons of these (after he bought the prepaid packs).

Then he got into my old PP account, luckily there was no CC, but he spent every single dollar left. He was buying mp3 music, and even made a donation of the last $1.2 he spent.

The guy is from Iran, I have quite some information about him. Please, if you are from Iran or know someone, contact me.

It's one thing to try and steal a domain, and then fail and move on, then you are a low-life criminal, but if you are trying to steal a domain, and fail and then you go on rumble and try to ruin the life of the domain owner, now that's the lowest scum that doesn't deserve to be outside in the world and breath the same air as us.

Security: biggest mistake was that I thought keeping emails in my Gmail account is a good idea. It's not, I was thinking about it as a backup if something happens to my computers, but actually it's the biggest security mistake. It's better to lose your emails then have someone like this guy see them.

 

[Embrand]

I got the worst of the worst scammers. After he failed to get "his" $7.5k that he already felt in his wallet, he thought I'm responsible for his "misery" and he started ruining my online business.

First he deleted close to 100 websites from my host (I saw it happening in front of my eyes, while I was on the phone with my host telling them to try to stop it - too late, but we had backup - although not the most fresh).

Then he went on to spend my money through my hacked Moniker account (I had no idea my CC was saved on file there). He spent around $800 in under 20 minutes, until I was able to block my credit card.
He was buying domains like TETRAPAK-F*CKED.NET,TETR*-IS-DIED.COM, but tons of these (after he bought the prepaid packs).

Then he got into my old PP account, luckily there was no CC, but he spent every single dollar left. He was buying mp3 music, and even made a donation of the last $1.2 he spent.

The guy is from Iran, I have quite some information about him. Please, if you are from Iran or know someone, contact me.

It's one thing to try and steal a domain, and then fail and move on, then you are a low-life criminal, but if you are trying to steal a domain, and fail and then you go on rumble and try to ruin the life of the domain owner, now that's the lowest scum that doesn't deserve to be outside in the world and breath the same air as us.

Security: biggest mistake was that I thought keeping emails in my Gmail account is a good idea. It's not, I was thinking about it as a backup if something happens to my computers, but actually it's the biggest security mistake. It's better to lose your emails then have someone like this guy see them.

This is really disturbing. Hope you manage to find out who he is and that he can be punished in some way or another.

 

[Stian]

I got the worst of the worst scammers. After he failed to get "his" $7.5k that he already felt in his wallet, he thought I'm responsible for his "misery" and he started ruining my online business.

First he deleted close to 100 websites from my host (I saw it happening in front of my eyes, while I was on the phone with my host telling them to try to stop it - too late, but we had backup - although not the most fresh).

Then he went on to spend my money through my hacked Moniker account (I had no idea my CC was saved on file there). He spent around $800 in under 20 minutes, until I was able to block my credit card.
He was buying domains like TETRAPAK-F*CKED.NET,TETR*-IS-DIED.COM, but tons of these (after he bought the prepaid packs).

Then he got into my old PP account, luckily there was no CC, but he spent every single dollar left. He was buying mp3 music, and even made a donation of the last $1.2 he spent.

The guy is from Iran, I have quite some information about him. Please, if you are from Iran or know someone, contact me.

It's one thing to try and steal a domain, and then fail and move on, then you are a low-life criminal, but if you are trying to steal a domain, and fail and then you go on rumble and try to ruin the life of the domain owner, now that's the lowest scum that doesn't deserve to be outside in the world and breath the same air as us.

Security: biggest mistake was that I thought keeping emails in my Gmail account is a good idea. It's not, I was thinking about it as a backup if something happens to my computers, but actually it's the biggest security mistake. It's better to lose your emails then have someone like this guy see them.

I don't have words..

 

[tetrapak]

No, me neither, this is the lowest a human being can get. I'm just getting emails that he also tried to hack in to my other Paypal, to my Moneybookers. Basically he was working to damage me for 4-5 hours straight. How can one get so mad?

 

[Stian]

No, me neither, this is the lowest a human being can get. I'm just getting emails that he also tried to hack in to my other Paypal, to my Moneybookers. Basically he was working to damage me for 4-5 hours straight. How can one get so mad?

Maybe you should go through all your previous domain transactions/e-mails etc. Maybe you have pissed someone off in the past? It really sounds like this guy has some personal vendetta against you. I can't understand how someone can do all this damage to one random person.

---------- Post added at 01:05 PM ---------- Previous post was at 01:04 PM ----------

The story gets very bizarre:

"hello,
im so sorry about lama.com, someone hacked it for me. i just ask him for fun if he can do it then he get it seriously and hack it for me.
but i want to have a deal for you, i need this domain and want to purchase from you.
Could you please let me know your asking price ?
Im serious about that and if you are not interested i'll back the domain to your account.

Best Regards"

Also, I'm a little confused; who sent this e-mail? Not the buyer I assume?

 

[TheLegendaryJP]

I always thought even when a name is pushed within GD a lock is still in place, that a registrant info change was enough to activate it and we agree to it when we transfer/accept.

Am I wrong here, have to run out the door but someone confirm?

 

[erdinc]

tetrapak,
1. Was your gmail hacked?
2. Have you again control of your gmail?
3. Was it regular gmail or google apps mail?

---------- Post added at 08:27 AM ---------- Previous post was at 08:03 AM ----------

it takes 5-8 days for domain transfers and 60 day restriction on domain account changes... either way you are safe with GoDaddy....

This is not true. I transferred a domain away from godaddy in 5 minutes, not 5 days. There is an option to manually approve a transfer request from inside your godaddy account. Once you click "I accept" the transfer is instant.