web analytics

Moniker: Two more stolen LLL .com domains point to organized crime ring

ZFBot
Keep your domains safe, choose a safe registrar.

Keep your domains safe, choose a safe registrar.

Only the tip of the iceberg appeared yesterday, when the mass breach of Moniker accounts was outlined.

Several valuable domains, including LLL .com’s, were stolen by what appears to be an organized crime ring of brazen thieves.

After gaining access to a potentially unencrypted list of usernames and passwords at Moniker, the thieves spent two weeks – from September 18th, to October 3rd, cherry-picking the best domains from the list they were able to compose.

Some of these domains were pushed to other Moniker accounts with bogus information, before being transferred out to other domain registrars. In the process, domains at GoDaddy were stolen as well, as their owners shared the same account credentials across both registrars.

We can now identify ZRZ.com and BRX.com as stolen. Do not buy them if someone offers them for sale, at any price.

So far we have not heard from Moniker, that clearly needs to fire their security team and restructure the company in a manner consistent with established domain registrars.


Facebooktwittergoogle_plusredditpinterestlinkedinmail
Copyright © 2019 DomainGang.com · All Rights Reserved.

Comments

3 Responses to “Moniker: Two more stolen LLL .com domains point to organized crime ring”
  1. James says:

    Anyone that is still using Moniker.com is at HIGH risk. Your domains are sitting in a bank with the doors unlocked. Until
    Moniker comments on this to enure the exploits were plugged transfer out while you can. If you still have domains sitting
    with them after the site redesign several months ago shame on you.

  2. If they reset all passwords how are people still at risk?
    I transferred all my domains out from there two months ago except for 4 I recently won at Snapnames, but appearantly the hackers did not appreciate those $69 buys cause they are all still there.

  3. James says:

    If the exploits were not patched then you can reset your PW a thousand times and the account still can get accessed.

Leave a Reply

Your email address will not be published. Required fields are marked *

 characters available