discuss Warning part 3 or 4

[Inframan]

Hmmm

I'm noticing a pattern.

First time it happened was at (formerly) DAN.

A domain pirate listed my domains on his phishing website. Eventually DAN got around to deleting my domains off his page. I posted pictures of the so everyone else would be aware.

Second time it happened was at SEDO marketplace.

I posted why am I getting a Afternic fast transfer for a domain I don't have on Afternic? Well NP forum members let me know a different was listing my domain on his website. I didn't approve the transfer and thought nothing else of it.

Today again at SEDO marketplace.

I'm getting an Afternic fast transfer for a different domain.

--------------------------------------------------------------------------------------------


Let me backtrack a little bit.

The very first time I posted about a was when (he/she/it) had direct access to my DOMAIN.com account. Very scary because my credit card was on file. This particular unlocked and attempted to push my domain into their account. DOMAIN.com intervened. I also posted up to date information on NP of what was going on.

Now just to refresh everyone's memory I have Norton and use a VPN. All my passwords are asymmetrical-quantum-inverse-string theory-equations.

The popular NP theory was the used Social Engineering to gain access to my account. DOMAIN.com never disclosed how this had direct access to my account. DOMAIN.com now uses 2FA.

Ok back to the present.

-----------------------------------------------------------------------------------

What do all these domains have in common that drive these to a hardcore life of CyBerCRiME?

All these domains were/are listed between $300 - $700.
They're all .COM domains.
Low online evaluations.
All the domains were dissimilar in multiple categories.
DAN/Afternic is the platform of choice for .

My theory is because these domains were/are priced low, I wasn't supposed to notice they went missing (attempted). Because my portfolio is under 100 domains I can monitor my accounts thoroughly.

The unicorn that had access to DOMAIN.com account was the most sophisticated. Outside of that particular lone wolf what are your options to safeguard your portfolio?

One NP member suggested I register all my domains at Afternic and put not for sale that way the can't list my domains.

I guess that's a proactive workaround. However there's always a lone wolf that's ahead of the curve.

This forum does have a degree of clout. Maybe the membership should petition Afternic to require DNS and Nameserver verification.

Feel free to share and discuss encounters and countermeasures against .

 

[Adrigan]

It is upto domain registrars and marketplaces to devise security measures and not for their customers to be running around looking for tricks, workarounds and such.

Domain registrars have historically been lazy and seemingly indifferent to clever criminals and/or they simply do not have the sly and sneaky mindsets/criminal awareness in their staff to be able to think of existing security weaknesses and think ahead of possible security weaknesses. This is very typical of western companies, who think differently about human nature than almost every other region/culture and who are in la la land about the dark side of people.

As customers of domain registrars and domain marketplaces, your choice of actions are limited but you can choose not to use those sites that have terrible and indifferent reputations. This includes godaddy, afternic, dan, and all their other slimy offshoots, which are all mostly crooked as well as sloppy and their owners/CEOs and other key staff need to be in prison. There are other crooked and crap operators but I don’t have direct experience of them. Generally, the larger a company is the worse it is and I have never ever seen any large company in the world who do not have significant troubles, problems, security breaches, poor customer satisfaction and lawsuits. It seems the bigger a company gets, the less is pays attention to those things that made them big - they become fat, complacent and indifferent.

Domain registrars and marketplaces need to up their game if they are to prevent further thefts and scams.

Sure, when there is a blatant case of domain name theft, there are procedures in place that can remedy that theft, I assume in the majority of cases since everything is online and the people involved can be identified. However, remedy may not always be possible if the thief, any middlemen and registrars, etc., are in a hostile country/countries and/or they are uncooperative or cannot be properly identified.

I don’t know enough about this subject to know if ICANN and others have total power in any domain name theft case. In any event, whether a remedy is effected or not, the theft puts the lawful owner into a labvrythnian obstacle course to provide all kinds of info, and comply with what might be asked of them, plus it will take time for all the steps/procedures are taken.

I have long predicted the emergence of a 2 or 3 tier internet, with the top tier being a premium place where many of the current unwanted elements of the internet are absent. I don't know how it would all work but as more and more people join the internet, the standards of many things will necessarily get lower and lower and lower and this will fuel the calls and desires for separate versions of the internet.

 

[Inframan]

It is upto domain registrars and marketplaces to devise security measures and not for their customers to be running around looking for tricks, workarounds and such.

I agree

As customers of domain registrars and domain marketplaces, your choice of actions are limited but you can choose not to use those sites that have terrible and indifferent reputations. This includes godaddy, afternic, dan, and all their other slimy offshoots, which are all mostly crooked as well as sloppy and their owners/CEOs and other key staff need to be in prison. There are other crooked and crap operators but I don’t have direct experience of them. Generally, the larger a company is the worse it is and I have never ever seen any large company in the world who do not have significant troubles, problems, security breaches, poor customer satisfaction and lawsuits. It seems the bigger a company gets, the less is pays attention to those things that made them big - they become fat, complacent and indifferent.

This isn't a major technical endeavor on their part. If a user account is caught listing domains they don't own, the answer is simple - Permanent Ban.

I have long predicted the emergence of a 2 or 3 tier internet, with the top tier being a premium place where many of the current unwanted elements of the internet are absent. I don't know how it would all work but as more and more people join the internet, the standards of many things will necessarily get lower and lower and lower and this will fuel the calls and desires for separate versions of the internet.

I've thought of this as well but on a different level. Just like the reality of Network Neutrality involving cable internet providers trying to disrupt subscription app services. A company like Disney is going to assert you have to subscribe to their app before you can log on. Or Disney is going to buy a major ISP. The worst case scenario is the internet will be considered a privilege that can be revoked.