NamePros
Welcome, Guest! Ready to make a name for yourself in the domain business? We welcome both the hobbyist and professional domainer to join the discussion as part of the NamePros community.

Click here to create your profile to start earning reputation for posting, and trader ratings for buying & selling in our free e-marketplace. Build your trader rating with each successful sale. Our system has tracked over 100,000 sales and counting!
FAQ & TOS Register Search Today's Posts Mark Forums Read

Go Back   NamePros.com > Business & Community Discussion Forums > Community > Warnings & Alerts
Reload this Page Incredible security holes at Godaddy

Warnings & Alerts Report and discuss scams, stolen domains, and bad people or companies to deal with.

Advanced Search
9 members in live chat ~  


Reply
 
LinkBack Thread Tools
Old 03-27-2011, 03:14 AM THREAD STARTER               #1 (permalink)
Senior Member
Join Date: Sep 2006
Location: London, UK
Posts: 1,900
Erdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond reputeErdy has a reputation beyond repute
 

Incredible security holes at Godaddy

Method 1:
Open this page and spend a minute to check what you see:

https://supportcenter.godaddy.com/Do...rog_id=GoDaddy

What you see is a form to change your account email or to push your domain from your account to another. All they ask is a screenshot of a photoshop file where the scammer has typed your name in one of those documents:
  • State issued driver's license
  • State issued photo identification card
  • Passport
  • Military photo identification

Yes, you read it correct. A scammer can take any image file of any photo ID and open it in photoshop and type your name. Then save the image file and upload it using that form. Godaddy will change your account email to any email address the scammer submits in the form. On that page there is a button that says "chose file". The scammer would click this button to upload a fake image file.

You might think that's not possible. Think again. Late 2009 a 3 letter domain PDN dot com was stolen with this method. You can check it here.


Method 2:
Except that method you see above, there is another method which involves email forwarding your whois or account email address to scammers mail address. The simply asks your domain registrar to set email forwarding. You might think the support staff wouldn't do it. Think again.
????: NamePros.com http://www.namepros.com/warnings-and-alerts/708522-incredible-security-holes-at-godaddy.html

Check out how sweet.com and direction.com was stolen:
http://preventdomaintheft.com/2008/0...steal-domains/
This article was written by the original owner of direction.com who had this domain stolen but recovered it later.
Quote:
Hello Dear,

Thanks for nice services and support,

I’m tried many time to set mail forwarding for my email account, but page will not load after click on Submit button for set mail forwarding!!!

domain: SWEET.com

Tried to set: xxx@SWEET.COM forward to sillworks4@gmail.com So, Please check it and try to set this mail forwarding….and send me note when you have done it.

[the name of the administrator of sweet.com]

Thanks Again
Method 3:
The scammer will just email godaddy directly from his own email address and ask them to change your account email to his. Surprisingly godaddy will do this if they get any of the following:

your four-digit Shopper PIN or,
your 4 digit Paypal Billing ID or,
the last 6 digits of the credit card on file

Especially, if you have used your credit card on any website where you bought a domain related service, for instance if you bought domains at another registrar, if you bought domainer software at another site they would know that you are a domainer and they would know the last 6 numbers of your credit card. This is the only information needed:
????: NamePros.com http://www.namepros.com/showthread.php?t=708522

http://www.warriorforum.com/main-int...rity-hole.html
Quote:
Here is an excerpt on the email I got from them
"If you are unable to log in and would like us to modify the e-mail address on file for an account, we will first need to verify the account. To verify the account, please reply to this message with your four-digit Shopper PIN, 4 digit Paypal Billing ID, or the last 6 digits of the credit card on file, as well as the new e-mail address that you would like to be on file for your Go Daddy account. The change will be made promptly upon verification of information and your reply and you will receive an email confirming that the change is complete.
Last edited by Erdy; 04-13-2011 at 07:09 AM.
Erdy is offline   Reply With Quote
Reply

« Yet Another stolen domain listed on Flippa - ZTM.com | kevin leto is a fraud »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


Similar Threads
Thread Thread Starter Forum Replies Last Post
AccountExecutive.co.uk USFlag.co.uk HubbleTelescope.co.uk TigerHedgeFund.com and more TrueGift Domains For Sale - Fixed Price 29 01-21-2011 08:10 PM
geriatricians.info ElectronicBusiness.info exempts.info RazorBlades.info & much more refide46 Domains For Sale - Auctions 10 11-22-2010 07:21 PM
geriatricians.info ElectronicBusiness.info exempts.info RazorBlades.info & much more refide46 Domains For Sale - Auctions 2 11-14-2010 12:10 PM
USToys.co.uk HubbleTelescope.co.uk AccountExecutive.co.uk and much more! TrueGift Domains For Sale - Fixed Price 28 09-04-2010 07:21 PM
TigerVentureCapital.com TigerSecurities.com TreasuryBondFund.com and much more! TrueGift Domains For Sale - Fixed Price 30 05-30-2010 04:43 PM

 
All times are GMT -7. The time now is 07:03 PM.

Contact Us - NamePros.com - Privacy Statement - Top
Domain name forum recommended by Domaining.com Powered by: vBulletin® Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.6.0 Ad Management plugin by RedTyger