My domain 6462.com has been stolen

[DnEbook]

Not going to get into a long conversation about this other than to say the domain name 6462.com has been stolen and is now at ename.com .......merry F****KING XMAS TO ME

 

[NameOmnia]

To get hijacked, you have to click the link.

Excuse my ignorance.
How can they steal my login details if I don't fill any form with password and account name in the page I am redirected to?

 

[DnEbook]

I think he uses outlook.com, not godaddy email.

I found this page with instructions on retrieving login history for outlook.com email accounts.

http://logintips.com/hotmail-sign-in/check-hotmail-login-history-outlook-com-recent-activity.php

Not sure if it works since I don't have an account with them myself, but hopefully it will yield some useful info.

Man what F**king nightmare, first i login and then proceed only to be sent a code to another email address, i log off get the code .....it doesn't work, i do this procedure a number of times and have gone in circles for an hour, you get 'do you have code' click yes and it takes me back to page to send the code out again and round and round we go...... my head hurts from banging it into a brick wall for an hour. Then i get a 20 four dash code and try to put it into the codebox ...... we require a 7 digit code, twice they sent a seven digit code of which i copied and neither work ? Twice i have had to get a phonecall with the code to try and logon after all this has locked me out, that was after the sms option failed twice. So handy link Discobull but i fear i will go insane before getting a result, at one stage i am offered an option to change details and now i think i am locked out of sensitive info for a month ......unless, you guessed it ( I have the F**king code) Me thinks i'll be getting drunk tonight or this shit it gonna give me a heart attack

 

[forge]

......unless, you guessed it ( I have the F**king code) Me thinks i'll be getting drunk tonight or this shit it gonna give me a heart attack

Give it a rest at least for the night. Have a nightcap but don't get too snockered.

 

[Dave_Z]

Well to be honest I cant see why WalletControl's thoughts are none too crazy

I believe there's a saying that correlation does not imply causation. Not that it stops some people from believing whatever they want, albeit unsure how that helps in any way.

Man what F**king nightmare, first i login and then proceed only to be sent a code to another email address, i log off get the code .....it doesn't work, i do this procedure a number of times and have gone in circles for an hour, you get 'do you have code' click yes and it takes me back to page to send the code out again and round and round we go...... my head hurts from banging it into a brick wall for an hour. Then i get a 20 four dash code and try to put it into the codebox ...... we require a 7 digit code, twice they sent a seven digit code of which i copied and neither work ? Twice i have had to get a phonecall with the code to try and logon after all this has locked me out, that was after the sms option failed twice. So handy link Discobull but i fear i will go insane before getting a result, at one stage i am offered an option to change details and now i think i am locked out of sensitive info for a month ......unless, you guessed it ( I have the F**king code) Me thinks i'll be getting drunk tonight or this shit it gonna give me a heart attack

Probably another reason why some registrars don't even offer two-step in the first place. That, or those registrars are still trying to work out the details before offering or expanding their two-step offerings.

Personally, I dealt with a few domain hijacking cases in my registrar work years ago. Let's just say none of them were pleasant and easy to fix. Some (sigh) weren't fixed, while others were and gave immense satisfaction at having helped those actual owners.

Good luck there.

 

[mad409]

I haven't read the entire thread and maybe this has been mentioned but a simple auto email sent to the users email address when the account is logged into could alert people quicker.

I did this security feature on a site I launched a few years ago for additional security. Although you would get an email alert when you actually logged in to your account but if it was accessed by someone other than yourself, you'd know in real time.

It's really a great function too if you have email forwarding to your phone.. If GD had this feature the OP would have known as soon as his account was logged into and could have got on the phone ASAP to report the breach.

 

[discobull]

Man what F**king nightmare, first i login and then proceed only to be sent a code to another email address, i log off get the code .....it doesn't work, i do this procedure a number of times and have gone in circles for an hour, you get 'do you have code' click yes and it takes me back to page to send the code out again and round and round we go...... my head hurts from banging it into a brick wall for an hour. Then i get a 20 four dash code and try to put it into the codebox ...... we require a 7 digit code, twice they sent a seven digit code of which i copied and neither work ? Twice i have had to get a phonecall with the code to try and logon after all this has locked me out, that was after the sms option failed twice. So handy link Discobull but i fear i will go insane before getting a result, at one stage i am offered an option to change details and now i think i am locked out of sensitive info for a month ......unless, you guessed it ( I have the F**king code) Me thinks i'll be getting drunk tonight or this shit it gonna give me a heart attack

I suspect that the problem is that you keep logging out to retrieve the code. It probably generates a new code for every session so every time you log back in the previous code sent becomes invalid.

Don't navigate away from the page where you have to enter the code. If you have to log into a different email account to retrieve the code, do it on another browser or a different computer. You might even be able to do it on a different tab of the same browser if the other account isn't an outlook.com account.

 

[WalletControl]

Yes, GoDaddy is conspiring to steal the domain assets of its customers and send them to China.

Actually, that is exactly what I think.

 

[vdonline]

I moved all my important domains to another registrars that support 2 factor authentication for customers outside U.S long time ago, after reading first similar report as what OP said.

 

[xCaribbeanboy]

I moved all my important domains to another registrars that support 2 factor authentication for customers outside U.S long time ago, after reading first similar report as what OP said.

Which registrar is that?

 

[vdonline]

Which registrar is that?

InternetBS for some weird domain extensions, others are on NameSilo

 

[Acroplex]

Actually, that is exactly what I think.

Louise, you made that clear, so I'll wait for the proof on that bizarre allegation.

 

[forge]

I suspect that the problem is that you keep logging out to retrieve the code. It probably generates a new code for every session so every time you log back in the previous code sent becomes invalid.

Don't navigate away from the page where you have to enter the code. If you have to log into a different email account to retrieve the code, do it on another browser or a different computer. You might even be able to do it on a different tab of the same browser if the other account isn't an outlook.com account.

Ugh, I did have a similar experience recently with some other website and it was maddening as hell. Very user unfriendly.

 

[WalletControl]

Some of Godaddy’s wipo victories include:

gowilddaddy.com
godaddysgirls.com
godaddytraffic.com
godaddyebay.com
godaddysebay.com
godaddysreseller.com
godaddythat.com
godaddythatdomain.com
gomommy.com

Even gomommy.com and other domains that might be considered grey area, have incurred a cease and desist to the Registrant.

Likely many more cease and desists have squashed godaddy trademark squatting than were won by UDRPs.

So, a Registrant at eName.com is using:

support-godaddy.com

for phishing, registered in June?

Only if Godaddy is complicit.

 

[Acroplex]

Apples and oranges. But if conspiracy theories are your bread and butter, such allegations are best saved for the Sasquatch Gazette.

 

[WalletControl]

Re: Phishers Now Targeting Domain Registrars
Jack Durban – Nov 09, 2007 6:47 PM PST
Godaddy just gave away one of our most valuable domains. We can't figure out how they did it but godaddy is complicit in their failure to provide a simple verification email to us to confirm or deny the transfer. It was quite simple for the thief but not so easy to get it back. It will cost us thousands to get it back. Godaddy basically told us to go pound sand. To get this back we have to file a cease and desist letter through an attorney. Then after a predetermined period of time if the crook fails to comply then we have to file a formal action with ICANN or better put "ICANNT" and give them $1,500.00 to impanel a board of arbitrators!
Total bill with all legal fees could reach several thousand dollars.
I got hosed by godaddy and Bob Parsons didn't even send me flowers.
- http://www.circleid.com/posts/070807_phishing_domain_name_registration/#3525

 

[Acroplex]

Geez Louise, I feel like I'm reading the National Enquirer. We get it, you only like Moniker and GoDaddy is in cahoots with Ename so that domains at GoDaddy are moved to China. It all makes sense.

In other news: Someone asked how they steal the domains at GoDaddy; this is how: http://domaingang.com/domain-news/godaddy-phishing-portal-scam-steal-domains/

 

[NameOmnia]

@WalletControl
Didn't we all say that the email address are first hacked then they filter out GD automated emails so the owner of the email address and domain will never see them?
Because it seems you keep ignoring this point..

Also, is there anyone who can answer my question above? i think it's important for everyone to understand
Maybe @Paul Buonopane '

Excuse my ignorance.
How can they steal my login details if I don't fill any form with password and account name in the page I am redirected to?

 

[WalletControl]

Hello Elliot,

My name is Alex Kogan and I am the owner of HeavenDomains.com.
Unfortunately I was the unlucky one who had an account at godaddy.com and on December 1, I also clicked through this email, after entering my user name and password, I realized there maybe an issue with it, and changed my password right away. Somehow two hours later after I logged into my account all my domain names were gone.
Needless to say I have had a difficult last two couple of days, spending a lot of time on the phone with customer service from GoDaddy.com, but I realize there isn’t much they are going to do, so I am hoping someone can give me a pointer on what do I do next.
Here is a list of stolen domain names. They are all now registered at eName in China. Needless to say, please do not purchase them, if they come up for sale.

61.ORG
35.ORG
14829.COM
18314.COM
44542.COM
44742.COM
44942.COM
69245.COM
74481.COM
74490.COM
74707.COM
83034.COM
90492.COM
97066.COM

Elliot, if you can please give me suggestions on what would be my next step, I would really appreciate. Of course, I filed godaddy form, but I do not realistically believe this will lead to anything positive. I also filed the FBI.gov form, but once again I am sure it will not lead to positive results.
The most expensive domain names on this list are 35.org and 61.org and I would be extremely happy if they two would come back to my account.
Thank you,
Alex Kogan
HeavenDomains.com

New GoDaddy Phishing Email: “Immediate Verification Required”
By Elliot Silver⋅ December 3, 2014
http://www.domaininvesting.com/new-godaddy-phishing-email-immediate-verification-required

 

[Acroplex]

Still waiting for proof that GoDaddy is conspiring with Ename. I mean, other than old emails from frustrated GoDaddy customers.

 

[Acroplex]

You do realize the problem is with the gaining registrar not willing to cooperate, don't you?

If anything, you can blame ICANN for being a bureaucratic organization that allows accredited registrars such as Ename to abuse or misappropriate their powers.