Name.com urges customers to change password

[Sapphiro]

Regarding a recent security breach, name.com advises customers to change their password.

More:
http://www.neptuni.com/blog/namecom-urges-customers-to-change-password.php

 

[WORDSWORTH]

Just received an email from the registrar:

We are writing to inform you of a security measure we have taken to protect the integrity of the domain names and information associated with your account.

Name.com recently discovered a security breach where customer account information including usernames, email addresses, and encrypted passwords and encrypted credit card account information may have been accessed by unauthorized individuals. It appears that the security breach was motivated by an attempt to gain information on a single, large commercial account at Name.com.

Name.com stores your credit card information using strong encryption and the private keys required to access that information are stored physically in a separate remote location that was not compromised. Therefore, we don't believe that your credit card information was accessed in a usable format. Additionally, your EPP codes (required for domain transfers) were unaffected as they are also stored separately. We have no evidence to suggest that your data has been used for fraudulent activities.

As a response to these developments, and as a precautionary measure, we are requiring that all customers reset their passwords before logging in. If you use your previous Name.com password in other online systems, we also strongly recommend that you change your password in each of those systems as well.

Please click the link below to reset your password:

We take this matter very seriously. We've already implemented additional security measures and will continue to work diligently to protect the safety and security of your personal information.

We sincerely apologize for the inconvenience. If you need any additional assistance or have any questions please email [email protected]. We'll continue to be as open and honest with you as possible as additional important information becomes available, so keep your eye out for a blog post or additional emails.

Thanks,
The Name.com Team

 

[lll]

Lets hope no identity fraud happens cause of this...

 

[alien51]

If only Name.com just ditched their Bob Marley atmosphere, and project instead an image of serious business... wasn't it just some time ago when they got owned by a DoS attack and admitted they couldn't handle it and transferred the domain being attacked to 1 & 1 ??

 

[Kate]

Not exactly fresh news. I think I learned about it early yesterday.
Moniker was breached too. Are they even aware ?

 

[Dave_Z]

If only Name.com just ditched their Bob Marley atmosphere, and project instead an image of serious business... wasn't it just some time ago when they got owned by a DoS attack and admitted they couldn't handle it and transferred the domain being attacked to 1 & 1 ??

They cater mainly to people who want some degree of personalized, non-serious attention, which I guess is working for them for the most part. And yup, they made the (difficult) decision last year to tell a customer to move his domain name to 1and1 following a DDoS attack.

Personally, I expected that thing to happen to a registrar after reading more sites being compromised in recent years. Online attacks are stepping up, ugh.

 

[angel69]

There has always been one thing about Name that has made me keep any valuable names away but it's in part compensated by their Verisign fob double-auth at sign-in. Still, I would not give them my best (I can't post here what it is since crooks read this too, pm me in case you haven't guessed what I'm talking about)

I wouldn't say they're "not serious", though. They are the quintessential millenial staff with all those guys born in the 80s and 90s, exposed brick walls, all Macs and no PCs, scruffy 3-day beards, making parodies of GoDaddy's Superbowl ads, etc That is part of their uniqueness and it works as far as keeping them fresh. If you follow them and see their FB entries they're customer-friendly. They try to appeal to the Go Daddy noob crowd, only there are not any big stashes of cash at Name lol, or reps shoving top-tier hosting plans down your throat when you call. Name also cares about losing customers since they're not #1

Not being equipped to handle a DDoS attack is real bad, but if you just use them for promos for average names they mostly pass muster. Their CP just got redesigned w/some useful and colorful extras, some changes around the website too, So they're 2nd tier but not at the bottom