My domain names have been Hijacked!

[VirtualT]

I can suggest a few tips for those with valuable portfolios that are serious (or paranoid) about security:

• Don't use Internet Explorer browser when managing your domains, there are too many vulnerabilities discovered all the time, use Firefox if possible, download and install the 'Customize Google' extension that lets you turn on https for your gmail.
• Don't use a free email service such as hotmail as your whois contact, use your own domain and forward the mail.
• Use linux or a Mac if possible, even in a Virtual Machine is ok
• If you absolutely need to use windows for managing your domains, make sure you keep a good anti virus such as AVG and a good spyware scanner such as spybot up to date, and scan regularly especially if you are installing software all the time.Turn on the spybot teatimer to monitor registry changes if your system can handle it running all the time.
• Consolidate all your domains at a safe registrar such as Moniker, set all the domains to renew automatically and pre-fund the account with a few hundred.
• Don't use wireless, all wireless security can be easily broken by script kiddies with easily download tools.
• Don't have your browser set to store passwords if you use a laptop, and make sure laptops have good security, a good bios password and windows password should be enough to deter anyone apart from the fbi, encryption is always a good option on any operating system for sensitive files, even freeware encryption tools are good.
• Don't have the same passwords for all your email or registrar accounts, big mistake and a very common f***up.
• Don't keep sensitive information such as account logins or passwords online, or in any forum PM's.
• Change your important passwords regularly, use letters, numbers and case for strong passwords.
• Always delete any emails about auth codes, some registrars don't change auth codes between transfers.

I'm sure others can add to this...

 

[GAMEFINEST]

I prefer firefox, IE is garbage...

hope you get all your domains back.

 

[Argie]

Nice, thanks for share...

I can suggest a few tips for those with valuable portfolios that are serious (or paranoid) about security:

• Don't use Internet Explorer browser when managing your domains, there are too many vulnerabilities discovered all the time, use Firefox if possible, download and install the 'Customize Google' extension that lets you turn on https for your gmail.
• Don't use a free email service such as hotmail as your whois contact, use your own domain and forward the mail.
• Use linux or a Mac if possible, even in a Virtual Machine is ok
• If you absolutely need to use windows for managing your domains, make sure you keep a good anti virus such as AVG and a good spyware scanner such as spybot up to date, and scan regularly especially if you are installing software all the time.Turn on the spybot teatimer to monitor registry changes if your system can handle it running all the time.
• Consolidate all your domains at a safe registrar such as Moniker, set all the domains to renew automatically and pre-fund the account with a few hundred.
• Don't use wireless, all wireless security can be easily broken by script kiddies with easily download tools.
• Don't have your browser set to store passwords if you use a laptop, and make sure laptops have good security, a good bios password and windows password should be enough to deter anyone apart from the fbi, encryption is always a good option on any operating system for sensitive files, even freeware encryption tools are good.
• Don't have the same passwords for all your email or registrar accounts, big mistake and a very common f***up.
• Don't keep sensitive information such as account logins or passwords online, or in any forum PM's.
• Change your important passwords regularly, use letters, numbers and case for strong passwords.
• Always delete any emails about auth codes, some registrars don't change auth codes between transfers.

I'm sure others can add to this...

 

[Andrew Shaw]

No more updates as of yet... No emails from any registers, or follow up phone calls. I will be calling all of them within the next 10 minutes.

jberryhill, No I dont have any reason to think its a Godaddy security issue, and Im not holding them liable for anything. The way I take that little disclosure agreement is that they can make little effort to get the domain names back if they want to, and by signing that waiver I can do nothing about it.... Unless I read it wrong. Of course you would know more about that then me.

I think that register transfers, and account changes should be more secure... More verification should be provided. Something like a verification card would be great. No verification numbers would be sent via email, but instead to your home address... When you want an account change, you can then pull your card out of your wallet, and type in your verification number. Even verification sent by phone or fax would be more secure then only having to log into an account and click a few buttons. The process would take longer, but we would all rest knowing our accounts are safe and sound.

I know there will always be holes... but dont you think its time we start adjusting to the unfortunate security issues we face every day?

 

[UDLTD]

Regardless GoDaddy is well aware of rampant misuse of thier system and stolen domains being transfered around between accounts and this has happened to NUMEROUS domainers in the last year at least and they've not done a thing about this and continue feeding domain owners the same crap.. Then even going so far as to listing the dropped stolen ones on TDNam and reselling them. Amazing.

Other registrars go out of thier way to help and actually stop this from happening where as godaddy bounces you around from department to department until you get a "Sorry go wipo or udrp the domain and who's you legal council" and then wait till the domain expires and resell it using TDNam.. They not only seem to allow this misuse and fraud but condone it and best case they'll keep the domain from leaving thier system so ultimately when it drops they can resell it for profit. That's what I've been seeing.

Meanwhile Bob Parsons whines about domain tasting which is far less harmful than domain theft and fraud.

PS AShaw you might need a different lawyer than those on this forum as one at least for sure does some work for godaddy. Not going to name names but I was told directly by one that best he could do was "talk" to someone he knows there as he represents them. Understandable. You likely won't get results here is all. Simple conflict of interest. I can't say they all do. I just know one does.

Heck I'm still trying to recover my name legally and the seller is still trying to sell it knowing I'm recovering it legally.. Godaddy sold it to him after it was stolen from me and they did nothing about it. Go figure.

I'll imagine godaddy will do nothing until we class action them.

Might not be a bad idea.

 

[Andrew Shaw]

Godaddy has actually been corporating pretty well thus far... UNDO especially. I get return emails within the hour. I understand their concern, as I could be anyone... Its just as much of a security issue for them to "take my word for it." I'd rather see that they are insuring they are mine. So far they are handling the situation pretty well...

When I spoke with the supervisor yesterday, he told me a reply would take 24 + hours. I told him that doesnt work for me. I recieved a reply within 8 hours. I wont let these names go. Godaddy has the power in this situation. The domain names are frozen.

Ive submitted a complaint on whois verification to ICANN, and also explained the situation. I dont think it will hurt to see what they can do on their end.

 

[UDLTD]

I got the same runaround for a year from godaddy and ICANN AShaw .. Be prepared. Just telling you what I experienced with Hacked.cc .. I'll be suprised if they do anything. They can look right in thier system and see if domains have been pushed and who to.. and then see the different accounts they were pushed around in.. You can count on that. Any way you look at it something needs to be done. I moved all my domains to dynadot .. They actually offer support.

 

[Dave Zan]

The process would take longer, but we would all rest knowing our accounts are safe and sound.

Don't we all. However, registrars are trying to balance that with people's
desire for instant gratification.

Just stick with a registrar who's more than capable of handling such. Good
luck with your issue.

 

[jberryhill]

UNDO especially. I get return emails within the hour. I understand their concern, as I could be anyone... Its just as much of a security issue for them to "take my word for it."

Ding ding ding ding. We have a winner.

In addition to doing various things, I do a fair amount of work for registrars, and even from time to time for registries.

People will say almost anything to get a domain name, and falsely or incorrectly claiming "theft" is outrageously common.

It's usually the first line of approach when someone loses a domain name by failure to pay a renewal to say the new registrant "stole my domain".

They get a lot of these claims every day, and they can't properly look into the situation in an hour.

AShaw you might need a different lawyer than those on this forum as one at least for sure does some work for godaddy. Not going to name names but I was told directly by one that best he could do was "talk" to someone he knows there as he represents them.

There's nothing wrong with naming names. Attorneys are not allowed to conceal a conflict of interest. Since I've responded in this thread, your leaving that implication on the table seems to be something of an accusation.

I have certainly never done any work for GoDaddy, and have represented interests adverse to GoDaddy in the past. If I was working for GoDaddy, it would be unethical for me to post in this thread and not state that fact.

The closest thing I can think of is having been treasurer of the ICANN Registrar Constituency. I maintain the RC treasury in a trust account that I manage, and GoDaddy is a member of the RC. This is an unpaid, volunteer service that I provide to the RC, and not to GoDaddy.

 

[WeBuyThe.Com]

opcorn: Good Luck interesting to see how this develops...

 

[domainoffers.biz]

If you know that the Hijacker's address is real one, why don't you report to police department and catch him immediately. Or if the telephone is real one , it must be trackable, just report to police crime department and let's catch the hijacker.

 

[gariben]

If you know that the Hijacker's address is real one, why don't you report to police department and catch him immediately. Or if the telephone is real one , it must be trackable, just report to police crime department and let's catch the hijacker.

It's never as easy as this. Do you think hacker would leave their real address or number? What happens if they leave down your address.

need to trace the IP address/time stamp and go on from there. But the information is not easy to get

 

[DomainMagnate]

I can suggest a few tips for those with valuable portfolios that are serious (or paranoid) about security:

• Don't use Internet Explorer browser when managing your domains, there are too many vulnerabilities discovered all the time, use Firefox if possible, download and install the 'Customize Google' extension that lets you turn on https for your gmail.
• Don't use a free email service such as hotmail as your whois contact, use your own domain and forward the mail.
• Use linux or a Mac if possible, even in a Virtual Machine is ok
• If you absolutely need to use windows for managing your domains, make sure you keep a good anti virus such as AVG and a good spyware scanner such as spybot up to date, and scan regularly especially if you are installing software all the time.Turn on the spybot teatimer to monitor registry changes if your system can handle it running all the time.
• Consolidate all your domains at a safe registrar such as Moniker, set all the domains to renew automatically and pre-fund the account with a few hundred.
• Don't use wireless, all wireless security can be easily broken by script kiddies with easily download tools.
• Don't have your browser set to store passwords if you use a laptop, and make sure laptops have good security, a good bios password and windows password should be enough to deter anyone apart from the fbi, encryption is always a good option on any operating system for sensitive files, even freeware encryption tools are good.
• Don't have the same passwords for all your email or registrar accounts, big mistake and a very common f***up.
• Don't keep sensitive information such as account logins or passwords online, or in any forum PM's.
• Change your important passwords regularly, use letters, numbers and case for strong passwords.
• Always delete any emails about auth codes, some registrars don't change auth codes between transfers.

I'm sure others can add to this...

Great tips, Kris! Well worth quoting

For all those who want to secure their computer and make sure it's clean from all the animals, here's a good guide I've followed
http://www.techspot.com/vb/topic58138.html

 

[[email protected]]

If nothing else works and you have proof that they are / were your domains you can always file suit, get all the domains registrar certificates deposited with the court and then get an order for the domains to be transfered back to you. But that costs money so the domains have to be worth it to you.

Stevan Lieberman

<< MOD EDIT -- Please DO NOT manually include a Signature to your posts, instead, set it up via USER CP. >>

 

[Creature]

PS AShaw you might need a different lawyer than those on this forum as one at least for sure does some work for godaddy. Not going to name names but I was told directly by one that best he could do was "talk" to someone he knows there as he represents them. Understandable. You likely won't get results here is all. Simple conflict of interest. I can't say they all do. I just know one does.

Are you nuts? Can you not see the free comments from JB in this thread?

 

[Andrew Shaw]

With the help of everyone here... I now have my GODADDY domain names SECURE in my NEW godaddy account!

I expected the opposit from all registers. The first day I spoke with all the registers, I expected all others to have corrected everything, but GODADDY was by far the most responsive, helpful and quick register to get the information needed, investigate, and have the domain names back in my account within 3 days of my initial request.

I should be hearing back from the other registers tomorrow as they dont offer support on weekends.

Again, I couldnt have done this without the help of everyone here. So I thank each and every one of you!

Ill continue keeping you updated!

Andrew Shaw

 

[jberryhill]

It's never as easy as this. Do you think hacker would leave their real address or number?

I was chasing after a serial phishing attack some time ago, and the guy kept using names and addresses which he had stolen in the preceding attack.

need to trace the IP address/time stamp and go on from there. But the information is not easy to get

...and they use proxies, so the IP address doesn't get you anywhere either.

 

[Bill Roy]

Andrew, glad the GoDaddy domains are safe, fingers crossed for the remainder.

JB, I hope you realise how much we all appreciate the service you give on this forum, there is no requirement for you to do it and that is what makes it all the more special that you do.

 

[copper]

Andrew, good to see your domains at Godaddy are all safe.
Hope to see good news for other domains real soon as well

 

[jberryhill]

Not going to name names but

Awww.... c'mon.... we're all sitting on the edge of our seats here.