If you’ve been following our extensive coverage on domain theft, it’s been rampant this year, primarily thanks to a new silly requirement by ICANN to verify email addresses, as of January 1st, 2014.
That requirement has led to a barrage of domain theft incidents, primarily via the use of phishing emails that take unsuspected domain registrants to rogue web sites.
Once there, these fake portals record usernames and passwords, and unless there is a secondary layer of protection to one’s registrar account, they log in and steal domains.
Today we announced the theft of Kamao.com from its owner’s GoDaddy account. The thief used a fake GoDaddy domain and portal, to steal the domain.
The following rogue domains, all registered with the Chinese registrar Ename.com, are used as phishing web sites for domains hosted at GoDaddy and eNom:
- account-godaddy.com
- godaddy-account.com
- service-enom.com
- service-godaddy.com
- services-enom.com
- services-godaddy.com
- support-godaddy.com
For your safety, do not visit these web sites, as they are being actively used in order to hijack registrar accounts and steal their credentials.
Why isn’t icann spending some of their millions to fix this ??