25 LLLL.COM domains was stolen.

[aaron123]

25 LLLL.COM domains was stolen.

The domains were transferred out of my GoDaddy account and were moved to a namesilo.com and 22.cn.

The following list of domains was stolen and is currently in the process of being reclaimed:

CJQP.COM
GKJM.COM
JHGS.COM
KBXM.COM
KGRQ.COM
KQLD.COM
KQMP.COM
KRNX.COM
KRPZ.COM
KSWN.COM
KWMZ.COM
KXDP.COM
KZGF.COM
KZTQ.COM
MTYN.COM
RZJB.COM
SXDF.COM
DRQW.COM
RQCQ.COM
PQKT.COM
QFPW.COM
GYLZ.COM
GGYL.COM
GYLG.COM
GYLN.COM

Please don't buy those domains.

 

[BridgeFlows]

I think you don't have to worry as the thieves can be traced unlike bitcoin thefts

its more headache then you think, and there are registrar that don't give a crap its your domain or not they just dont answer...

 

[Omar Negron]

Sorry to hear that.

I hope you are able to get your domains back.

-Omar

 

[domix]

its more headache then you think, and there are registrar that don't give a crap its your domain or not they just dont answer...

I agree, there are numerous registrar's but I am sure GoDaddy would help and get back his/her domains.

 

[aaron123]

Did you receive email update that your Admin Contact was updated?

I have receive email update When My Admin Contact was updated.But I was sleeping at that time.At that time we were here at 1 a.m.

 

[aaron123]

I agree, there are numerous registrar's but I am sure GoDaddy would help and get back his/her domains.

Thanks I hope GoDaddy can help me get back my domains

 

[Chetan]

I have receive email update When My Admin Contact was updated.But I was sleeping at that time.At that time we were here at 1 a.m.

Domains Automatically enters 60 days lock on Godaddy once admin contact is updated.
Not sure that how the thiefs were able to transfer out of godaddy

 

[aaron123]

Domains Automatically enters 60 days lock on Godaddy once admin contact is updated.
Not sure that how the thiefs were able to transfer out of godaddy

The hacker only update Admin email.I think this is a System vulnerabilities.

 

[aaron123]

It seems that the change of the mail address is not locked on godaddy.I think this is a System vulnerabilities.

 

[Chetan]

The hacker only update Admin email.I think this is a System vulnerabilities.

Please point this out to godaddy, this is not done at all. @Joe Styler please help sorting this thing.
Here in India, despite of having two level authentication, email does not arrive to my mobile ever.
I am planning to move out completely to Uniregistry if this is the same with godaddy

 

[ulterios]

Is it safe to use iOS (on ipad, macbook, iphone) instead of windows? Someone tell me there are no virus/ malware/ spyware on iOS?

iOS has the same issues. Sometimes worse.

 

[NameOmnia]

I am really sorry to hear that, at least the names moved to @namesilo should be easy to recover.

There are a few things I do not fully understand :

- if you change email address the name gets locked ( at least that's what I have always understood )
- did you get in contact with GD as soon as you woke up? What did they say?
- it takes up to 5-7 days to transfer names out how did yours get transferred instantaneously?
- have you ever clicked on any suspicious email from GD? Did you work out how they got access?

Please @Joe Styler enlighten us.

 

[forge]

Nope, if you change only the email address this will not trigger the 60-day lock.

And you can expedite transfers out from GoDaddy which takes just minutes.

 

[Chetan]

Nope, if you change only the email address this will not trigger the 60-day lock.

Is this to promote domain theft ?

 

[NameOmnia]

Nope, if you change only the email address this will not trigger the 60-day lock.

And you can expedite transfers out from GoDaddy which takes just minutes.

So Godaddy is one of those registrars that still allow to expedite transfers...Maybe it's time to make a change to this? NameCheap seems to become a better alternative every day more..

 

[ulterios]

So Godaddy is one of those registrars that still allow to expedite transfers.

Yes they do. It's good if you don't want to take days to transfer/sell/etc a name, but bad for security. It's a trade off but most people are very impatient and don't want to wait days.

I transferred a domain a couple of days ago away from GD and it took about 20-30 mins to complete.

 

[aaron123]

Nope, if you change only the email address this will not trigger the 60-day lock.

And you can expedite transfers out from GoDaddy which takes just minutes.

I think this is a system vulnerability.

 

[yogiDomain]

@Joe Styler will surely help here. If nothing works out. File a dispute. This domains are worth 30k so u need to figure out something.
Keep all the documents mails ready.

 

[Joe Styler]

I reached out to Aaron via PM. We do allow expedited transfers many people like this, especially domainers who want to get a sale taken care of quickly so they can get paid sooner and before the buyer changes their mind. We do offer two factor authentication which I personally use and recommend everyone else use to keep their domains safe. Almost every time when I see names stolen two factor would have prevented it. We looked at the google app to do 2fa overseas but decided against it because we wanted to build something ourselves that we felt was a more secure option. I am not saying Google is not secure, I won't go into all the things we looked at but we looked long and hard at many options and picked the one we think is most secure for our customers. We have an expert team that helps with recovering stolen domains and they have been very successful in the past and I hope they will be in this case as well. Whenever someone loses a domain we all feel it, everyone knows how important a domain name or in this case many domains are to your business and that is extremely important to us and we will do everything we can to help. Recovering names that move overseas is not a quick process but we stay at it. I think coming out to let people know publicly is the right thing so that people will not buy the domains.

 

[aaron123]

I reached out to Aaron via PM. We do allow expedited transfers many people like this, especially domainers who want to get a sale taken care of quickly so they can get paid sooner and before the buyer changes their mind. We do offer two factor authentication which I personally use and recommend everyone else use to keep their domains safe. Almost every time when I see names stolen two factor would have prevented it. We looked at the google app to do 2fa overseas but decided against it because we wanted to build something ourselves that we felt was a more secure option. I am not saying Google is not secure, I won't go into all the things we looked at but we looked long and hard at many options and picked the one we think is most secure for our customers. We have an expert team that helps with recovering stolen domains and they have been very successful in the past and I hope they will be in this case as well. Whenever someone loses a domain we all feel it, everyone knows how important a domain name or in this case many domains are to your business and that is extremely important to us and we will do everything we can to help. Recovering names that move overseas is not a quick process but we stay at it. I think coming out to let people know publicly is the right thing so that people will not buy the domains.

I used two factor authentication a month ago. but because every time I want to log in GoDaddy I will not receive text messages. So I just canceled two factor authentication no long ago.
In my country, we often do not receive the verification code.

 

[Chetan]

I used two factor authentication a month ago. but because every time I want to log in GoDaddy I will not receive text messages. So I just canceled two factor authentication no long ago.
In my country, we often do not receive the verification code.

In India there is the same problem