My God, it seems just about all the stolen domain reports are always registered with GoDaddy....
I confirm this.
The following happened @ DNF 1 hour ago.
Today, that holder's name is Alex, while the domain's whois name is David. I questioned this and I thought it was a typo.
He replied quickly and it makes sense to me unfortunately.
Then he pushed the domain to my account and at meanwhile, I masspaid him $750. I also left him positive feedback.
Right after I received the domain and ready to sleep, I received the PM from ThisDot at NAMEPROS. And I was told that his DNF account is compromised and godaddy account also got hacked. So all members please beware this hacked account. Admin please check with the genuine ThisDot (David)..
I will wait a few hours to confirm that if David's DNF account is indeed hacked, I will return the domain name to David for sure. I don't know if paypal will protect me in this case (from my past experience, they don't), but I would do the right thing and take the $750 loss. Post added at 07:56 PM Previous post was at 07:54 PM.
Hi, David, no need to notify Godaddy. The domain is in my godaddy account. Once admin confirms your account status, I will push the domain back to your GD account. No worry...
1. Most domains owned by domainers are with GoDaddy..
2. GoDaddy has a higher percentage of.... shall we say less techie types that fall for phishing traps...
Question: are people using the same password on their GD accounts as they are using on forums?.
If not, is there something more insidious that is allowing hackers in?.
This stuff worries me.
Beware of emails that appear to be the yearly email from GoDaddy asking you to confirm your whois info for ICANN. The legit emails from GoDaddy do not require you to login. You click the link and it takes you to a confirmation page. The phishing email will require you to login, which is where they appear to be getting the info from in this rash of domain thefts.
I would advise to not click any link in any registrar email, even if you believe the email to be legit. GoDaddy has pretty much said that we can ignore the whois confirmation emails anyway as long as the whois is correct.
No idea if that played a role in the theft in this thread. Since they got a forum and registrar login, it seems more advanced than just one phishing email..... unless his DNF and GD user/pass was the same. If not, it would have been a very targeted attempt to get a trojan installed...
David (ThisDot)'s DNF account is restored by DNF admin..
David, I will push the domain to your godaddy account when I have your GD info..
Thanks Post added at 09:25 AM Previous post was at 09:17 AM Update: I just pushed back the domain to David's godaddy account...