Domains stolen from my GoDaddy account

I would call godaddy right away! Good luck recovering your domains

How did they manage to access your account? Perhaps did you receive a fake GoDaddy email or you had a weak password?

What domains were stolen?
It would help in case they are being offered for sale elsewhere.

Thanks for the replies everyone.

I have no clue how the thief got my account info. I never give it out to ANYONE. This took place shortly after midnight last night or I would have caught it in time to refuse the transfer request. I monitor my email during the day, but got to sleep some time.

Spoke to Godaddy and they pretty well assured me they can get the names back but it will take some time.

Moved to Warnings and Alerts.

You should post the names so that people are aware
hopefully they don't get sold in the meantime.

those emails from Godadday with the ICANN UPDATE in the header are usually phishing emails

did you get one recently and click on the [http://dcc. godaddly .com] link?

notice the intentinal misspelling which you can only see in these emails if you "hover" over the link.

never click any links in godaddy emails

go directly to the site and log in


hope you get your domains back

Thank you biggie.
Yes I did get an ICANN notice and I am pretty sure I clicked the link.
Kept the email - this is the link:

To review/update your Account data, simply:
+ Login to https://dcc.godaddy.com/ default.aspx?isc=ICANN0908a& amp;ci=8987

My bad I did not look closely.

Can thieves get your login info this way?

domainsusi said:

Thank you biggie.
Yes I did get an ICANN notice and I am pretty sure I clicked the link.
Kept the email - this is the link:

To review/update your Account data, simply:
+ Login to [B]https://dcc.godaddy.com/[/B] default.aspx?isc=ICANN0908a& amp;ci=8987

My bad I did not look closely.

Can thieves get your login info this way?

Click to expand...

Is that just the url written in the email or the actual link you can see only when you hover over it with your mouse pointer? The latter is what matters.

domainsusi said:

Thank you biggie.
Yes I did get an ICANN notice and I am pretty sure I clicked the link.
Kept the email - this is the link:

To review/update your Account data, simply:
+ Login to https://dcc.godaddy.com/ default.aspx?isc=ICANN0908a& amp;ci=8987

My bad I did not look closely.

Can thieves get your login info this way?

Click to expand...

That link looks legit though - and looks like the same
ones I click

Thank you the poet

I checked that and you're right - the actual destination link begins with:
http://dcc.godadbdy.com/login ......

CREEPS !!!

domainsusi said:

Thank you the poet

I checked that and you're right - the actual destination link begins with:
http://dcc.godadbdy.com/login ......

CREEPS !!!

Click to expand...

I was almost sure that was the problem.

domainsusi said:

Thank you the poet

I checked that and you're right - the actual destination link begins with:
http://dcc.godadbdy.com/login ......

CREEPS !!!

Click to expand...

yes, this is how they steal your login info


once you copy and paste those emails, then the link corrects itself to display correct gd url


you can only see the fake url within the actual email when you hover over it and look at the bottom of your screen


the sad part about it that, most of these domains are regged at gd and they don't do anything about trying to stop it.

they could register and hold all those gd typos to discourage this practice, which is rampant at gd

Good News !

Got all my domains back.

I am very pleased with Godaddy and the way they handled the situation.

susi

domainsusi said:

Good News !

Got all my domains back.

I am very pleased with Godaddy and the way they handled the situation.

susi

Click to expand...

That's great news! :tu:

If registrars would differentiate between account email and whois email the thief would have never known your account email to begin with. They display your account email to the world and then act as if it is only your fault your account is hacked.

With some registrars you can create default whois profiles. I couldn't find a way to do this at Godaddy. Their site is so complicated. It is very difficult if not impossible to avoid your account email from whois.

GODADBDY.COM is now owned by godaddy and redirects to their website.
Scammers must be dumb to register that name at godaddy in the first place

domainsusi said:

Good News !

Got all my domains back.

I am very pleased with Godaddy and the way they handled the situation.

susi

Click to expand...

Great! :wave:

Glad that you got your domains back. They'll strike back again with another typo of GoDaddy.com

sdsinc said:

GODADBDY.COM is now owned by godaddy and redirects to their website.
Scammers must be dumb to register that name at godaddy in the first place

Click to expand...

:lol:

congrats

Cheers
Corey

Erdinc said:

With some registrars you can create default whois profiles. I couldn't find a way to do this at Godaddy. Their site is so complicated. It is very difficult if not impossible to avoid your account email from whois.

Click to expand...

Preset Profiles is the way to do this at GoDaddy.