Stolen domains - CWI.com, 7Y.net, VYA.net

**mohno** · 09-07-2003, 02:50 PM

The domains, CWI.com, 7Y.net, VYA.net, has been stolen from a friend of mine.
They were grabbed with 4domains/SnapBack and the friend is negotiating with them about the stolen domains.
Unfortunately, CWI.com has been already transferred to directi.
Anyway, please stay away from the sales of these domains.

Thank you

**actnow** · 09-08-2003, 03:31 PM

Thank you for the info.

It would be nice to have a category (or, thread) listing stolen domains. I am sure there are a number of them floating around.

Maybe, DCG will act on this!

**Mr Webname** · 09-08-2003, 03:41 PM

Originally posted by actnow
Thank you for the info.

It would be nice to have a category (or, thread) listing stolen domains. I am sure there are a number of them floating around.

Maybe, DCG will act on this!

That's a good suggestion, though open to possible abuse - with the right evidence provided it could be a useful feature - I'll pass it on.

**Adam Dicker** · 09-08-2003, 03:59 PM

My question is how can we label property as stolen without a police report, that's like claiming someone is guilty before the trial.

just a thought....

-=DCG=-

**Steen** · 09-09-2003, 09:06 PM

Originally posted by mohno
They were grabbed with 4domains/SnapBack and the friend is negotiating with them about the stolen domains.

:huh: :huh: :huh:

Are you saying your friend let them drop and they were cuaght by SN/4D?

Cuz I would think a domainer would know better.

Or

Are oyu saying he cuaght them with SN/4D and then they were stolen..

**mohno** · 09-09-2003, 10:19 PM

I meant to say he caught them with SnapNames (and registered with 4domains), then they were stolen.
Perhaps, somebody hacked his account of 4domains and change accout information. Then, they transferred out "cwi.com" from 4domains to directi.

**Steen** · 09-10-2003, 12:48 AM

oh ok

Thanks for the info,

iwill watch out ofr em

**jpalmer** · 03-17-2005, 06:03 PM

Hey Steen,

I'm new to this forum and found your thread in a search. My apologies for opening an old thread, but I wanted to add some notes regarding this discussion since it refers to our company: 4domains.com.

In the discussion above the domain cwi.com transfer is discussed with implications the security surrounding the transfer away system may have been compromised. Obviously that is a critial point for us as a registrar.

I wanted to make note our transfer systems (prior to the ICANN auto-requirement/lock evolution) was very secure, if anything we got complaints it was too secure, but better safe than sorry. As a domain owner I'm sure you would agree.

During this timeframe (September 2003) our transfer away system was very straight forward and secure. The system would be notified by the registry of a transfer request and email the admin contact on the domain an email with a secure confirmation link to allow or deny the transfer, and no response before the 5 day auto-timeout would result in an auto-deny. The proceed link was clicked within 24 hours of that so the transfer was approved. You can email/PM me for the details. Since the proceed link was indeed clicked to allow cwi.com to leave our registrar account and move to DirectI there is nothing more we can do once that has completed.

I noticed subsequently the other two names were also transferred to DirectI in January 2004.

I hope these details are helpful, by looking at the current whois details everything looks ok.

If you need anything please let me know :^)

**mohno** · 03-18-2005, 03:10 AM

It happened on a friend on mine.
I didn't mentioned your _transfer_ system.
Actually, your account system was not secure.
Anyway, CWI.com is not still back to the rightful owner.

(I'll send PM.)

**Yoshiki** · 03-18-2005, 03:36 AM

Hi John,

I was bit surprised to read your line "by looking at the current whois details everything looks ok".

As your being a SnapNames partner, I suppose you should have received
the registrant informations for the domain names concerned from SnapNames.

Do you mean that the registrant informations received from SnapNames
at the time of your registering the domain names for SnapNames are same
as in the current Whois?

Originally Posted by jpalmer

I hope these details are helpful, by looking at the current whois details everything looks ok.

**methodM** · 03-18-2005, 11:09 AM

The 'hacker' probably knew your friends email password (probably the same as his 4domain password) and thats how he did it...which is probably your friends fault.