IT.COM

Domain Theft

Spaceship Spaceship
Watch
Impact
121
Hard to believe after nearly 25 years, but I got hit by criminals who have stolen a number of my domains. Any insights beyond working with the registrar of record to resolve this quickly?

-Commerce
 
5
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
9
•••
Really appreciate the feedback. Lots to look at there.
 
1
•••
Sorry to hear that. Do you know how this happened, so we can also take precaution? Hope you manage to resolve, sir
 
2
•••
Working on it. Am told that certain really private information was used to convince the register of my identity. Will probably be following up with the authorities after the names are returned. Still well in the 60 day registry transfer window, so that is the good news.
 
5
•••
Working on it. Am told that certain really private information was used to convince the register of my identity. Will probably be following up with the authorities after the names are returned. Still well in the 60 day registry transfer window, so that is the good news.


What was the registrar? So that others can avoid them in the future.
 
3
•••
Regarding the name of the registrar, I'd prefer not to say at this time. It is one of the big guys, so I have some hope that this can be turned around. What I may do is explain some of what that took to do and how this came to pass after it is resolved.
 
4
•••
Regarding the name of the registrar, I'd prefer not to say at this time. It is one of the big guys, so I have some hope that this can be turned around. What I may do is explain some of what that took to do and how this came to pass after it is resolved.
Do you have authenticator on your login?
 
0
•••
This is the wrong move, if you want to put delay the to theft, protect people from buying your domains, or at least flag the stolen names so they can't be moved around.

You are simply helping the thieves by allowing them to unload them by not naming them.

My guess is they didn't take your yellowpage names.
 
Last edited:
12
•••
Yup @wwwweb is correct, the more people know and get involved the better the recovery odds.

I have seen some pretty heavy topics on namepros were the members were instrumental in getting the stolen domains back.
 
8
•••
@wwwweb and @MapleDots - I do agree, however, I think it would be best to try to let the registrar have the opportunity to make things right. After all, it will be my pleasure to be able to report things are okay within a week should that happen.
 
2
•••
@wwwweb and @MapleDots - I do agree, however, I think it would be best to try to let the registrar have the opportunity to make things right. After all, it will be my pleasure to be able to report things are okay within a week should that happen.

A week is forever with stolen domains, you have to keep in mind the thief can quickly resell the domain and then you have another party in the middle.
 
6
•••
Regarding the name of the registrar, I'd prefer not to say at this time. It is one of the big guys, so I have some hope that this can be turned around. What I may do is explain some of what that took to do and how this came to pass after it is resolved.
Wow.
So if it turns around, no harm?

Come on man, it’s probably Network Solutions.
(worst registrar)
In any case, Good luck!
 
Last edited:
3
•••
@wwwweb and @MapleDots - I do agree, however, I think it would be best to try to let the registrar have the opportunity to make things right. After all, it will be my pleasure to be able to report things are okay within a week should that happen.
Maple is right, your domains are like hot potato right now, if they have left your register, it will be a long road back, as they probably have been flipped 1-2 times already if they have liquid value.
 
1
•••
Last edited:
4
•••
@JagG Thank you. I'm not the owner of Perl.com. This was a case of the registrar believing a change should be made with fake credentials supplied by the criminal(s) involved. Their MO features asking about a purchasing a domain, mail bombing the reply address with signups and stealing the domains within the account block.
 
6
•••
any one domain we should look out for in particular?
 
1
•••
any one domain we should look out for in particular?

Actually several. But a little update. Having contacted the registrar support, I was advised to outline in detail the situation as an email to mail to their abuse, with an expectation of 24-48 hour response time. Ironically, their servers got back to me quite a bit faster... the message bounced. Hopefully, their legal team and my account manager will pick this up. Even so, I am going to reach out to their corporate group this morning. Based on the call, it was discovered that either forged or stolen physical credentials were used to convince them that the individual(s) were me. There is a little problem with their documentation I shall not share here. As you can imagine, I'm not pleased that along with some pretty strong names, they opted to go after my corporate identity.

The list of stolen domains discovered so far is as follows:

companies.net
experience.net
firstusa.net
ihba.com
ihba.net
ihba.org
isba.com
isba.net
pressclub.com
pressclub.net
schoolers.com
schoolers.net
clanmaitland.org
commercecompany.com
commercecompany.net
commercecompany.org
commerco.org
thecommercecompany.com
thecommercecompany.net
thecommercecompany.org
 
Last edited:
16
•••
wow, ok, ty, will be looking out.
 
1
•••
2
•••
Wow.
So if it turns around, no harm?

Come on man, it’s probably Network Solutions.
(worst registrar)
In any case, Good luck!

Yea, Network Solutions

==

Decent names, I think you will get them back, as long as they remain at the same registrar, keep pushing.
Good luck
 
4
•••
Meh
 
Last edited:
1
•••
Actually several. But a little update. Having contacted the registrar support, I was advised to outline in detail the situation as an email to mail to their abuse, with an expectation of 24-48 hour response time. Ironically, their servers got back to me quite a bit faster... the message bounced. Hopefully, their legal team and my account manager will pick this up. Even so, I am going to reach out to their corporate group this morning. Based on the call, it was discovered that either forged or stolen physical credentials were used to convince them that the individual(s) were me. There is a little problem with their documentation I shall not share here. As you can imagine, I'm not pleased that along with some pretty strong names, they opted to go after my corporate identity.

The list of stolen domains discovered so far is as follows:

companies.net
experience.net
firstusa.net
ihba.com
ihba.net
ihba.org
isba.com
isba.net
pressclub.com
pressclub.net
schoolers.com
schoolers.net
clanmaitland.org
commercecompany.com
commercecompany.net
commercecompany.org
commerco.org
thecommercecompany.com
thecommercecompany.net
thecommercecompany.org

@Acroplex
(i love your reporting on ‘stolen’ names)
Hope you comment this one!
 
4
•••
I am not surprised it was Network Solutions. It seems to be an ongoing issue recently.

Brad
 
7
•••
5
•••
Back