Recent Posts
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
- ICANN drops the “man” from Ombudsman
- Have your say on police domain takedown powers
- Most registrars are shunning ICANN’s new Whois system
- Nominet to take over .gov.uk
- ICANN picks Istanbul for 2024 meeting
- ICANN’s private Whois data request service goes live
- .au regs slide on 2LD anniversary
- ICANN accused of power grab over $271 million auction fund
- A registrar is getting blamed for an Israeli war propaganda site
- Two more dot-brands bite the dust
- Google sells five-figure AI domain and six-figure .ing hack
- .blackfriday is still a bit rubbish
- Internet Naming Co acquires five more gTLDs
Go Daddy launches paid YouTube clone
Go Daddy has opened the doors of Video.me, a video-hosting service with a difference.
The difference is you have to pay for it.
The company seems to be banking on the idea that users will be happy to hand over $2 per month, rather than use YouTube for free, because Video.me has simpler password protection.
“People want privacy online, it’s obvious from the all of the recent news,” chief executive Bob Parsons said in a press release. “YouTube has been the place for mass-consumption videos, but for sharing more personal items, it’s way too complicated.”
Most of the recent news about online privacy has been focused on Facebook. I don’t think I’ve seen many people complaining about YouTube.
Still, at the very least the service is a high-profile use of a .me domains, which could help Go Daddy as a partner in Domen, the Montenegro-based .me registry.
Google blocks Go Daddy for ‘hosting malware’
(UPDATED) Google is currently blocking Go Daddy’s web site, calling it dangerous, because one of its image-hosting domains has been flagged for hosting malware.
Chrome users visiting pages on godaddy.com, including its storefront, currently see the standard Google alert page: “Warning: Visiting this site may harm your computer!”
Go Daddy’s main page seems to be affected because it uses images hosted at img5.wsimg.com, a Go Daddy domain.
A bit of a poke around reveals that the whole of wsimg.com is currently considered a malware site by Google’s toolbar on non-Chrome browsers, and also by the Google search engine.
The question is, of course, whether this is a simple false positive or whether bad guys have somehow managed to inject malware onto Go Daddy’s servers.
Go Daddy’s web site takes revenue in the six figures every hour, so if this is a false positive I can only imagine the content of the phone calls between Scottsdale and Mountain View right now.
But Go Daddy has been a target for the bad guys in recent weeks, with attacks against its hosting customers proving an irritant that the company can’t seem to shake off.
The company was also the victim of a phishing attack yesterday. I’d be surprised if the two incidents are connected.
UPDATE: Warren Adelman, Go Daddy’s chief operating officer, just called to say that this was indeed a false positive.
“Google erroneously flagged some of our image servers,” he said. “We need to go into this with Google, but there wasn’t any malware on our end.”
Adelman said Go Daddy has a pretty good idea what happened, but that it proved hard to get hold of the relevant people at Google on a Sunday morning during Memorial Day weekend.
Further details may be forthcoming later this week. For now, Google has apparently unflagged the servers in question, and Adelman expects the situation to be resolved within the hour.
Go Daddy tech support is a cash cow
Go Daddy’s call center support staff make the company hundreds of thousands of dollars a day in up-sells, according to documents revealed as part of an employee class-action lawsuit.
I covered the lawsuit (PDF), filed by three former Go Daddy employees, for The Register on Friday.
One of the plaintiffs, Toby Harris, was fired after he leaked “confidential” screenshots of the company’s CRM system to his home email address.
I’m not going to get into the details of the lawsuit, which concerns labor practices, here.
But the screenshots, which offer a bit of insight into how much revenue these front-line call center staff make for Go Daddy, are worth looking at.
According to one, Harris delivered over $10,000 in gross sales for the company over nine working days in January, taking about 5% of that for himself in commission.
Not bad for a rookie $12-an-hour support guy, considering how cheap most Go Daddy products are.
Another CRM screen shows the performance of a couple dozen members of Harris’ team, including how much commission they made over a two-week period and how many customer calls they handled.
These 23 employees made between $1,290 and $255 in commissions over the period, averaging $564 each, dealing with on average 31 calls each per day.
If that’s 5% of the gross, over 10 business days, you could try to extrapolate some company-wide data, but the screenshot probably represents too small a sample to make any precise calculations.
Still, it’s pretty clear that that a substantial chunk of Go Daddy’s revenue is generated by call center staff.
Harris told me he was expected to shift $250 to $450 worth of product every day, the equivalent of selling at least one new $8 domain name to every caller.
Domain Name Wire reported last December that the company had 1,600 support staff. At the low end of $250 a day, that would equate to $400,000 a day or $146 million a year from the phones alone.
I guess I found this a little surprising because while I always knew Go Daddy’s web site was a cash machine, I had assumed its call center spent most of its time providing technical support.
As a customer, I often wondered how the company managed to run such a high-quality support service on such a pitifully low-margin loss-leader.
Now I know. Judging by these leaked numbers, those guys more than pay for themselves.
Verizon hires investigator to track down DirectNIC bosses
Verizon has won a delay in its cybersquatting lawsuit against domain registrar DirectNIC, because it can’t seem to track down and serve its CEO, Sigmund Solares.
In its latest filings with the Florida District Court, Verizon says that it had to hire a private detective to track down DirectNIC director Michael Gardner, and ended up serving his wife instead.
But, two months after filing the suit, the company still hasn’t managed to track down Solares.
“Plaintiff continues to diligently attempt to serve the lone remaining Defendant yet to be served, Sigmund Solares… Plaintiffs continue to diligently try to locate and serve this Defendant.”
DirectNIC, previously known as Intercosmos Media Group, relocated to the Cayman Islands from New Orleans in 2008, which may explain some of Verizon’s difficulty.
Indeed, when Verizon turned up to serve the company in New Orleans, it found its old office (from where employees attracted global attention for live-blogging Hurricane Katrina) closed.
Verizon sued DirectNIC, along with several directors and alleged aliases, in March, claiming they had squatted on at least 288 domains that included Verizon trademarks.
The case is of note because Verizon alleges that DirectNIC broke US cybersquatting laws when it parked expired domains that contained Verizon trademarks.
Parking pre-delete expired names is a common practice among registrars, which makes the lawsuit puzzling.
But Verizon does appear to be digging for something else, its complaint suggesting a connection between DirectNIC and its nominal registrants that may not be entirely kosher.
Without legal discovery, its hunches could go nowhere. And before Solares is served, it cannot proceed to discovery.
The court has granted an extension until late August, or 30 days after Solares is served, for the first case management meeting.
Africa gets its third ICANN registrar
It’s been over eight years since ICANN held its public meeting in Accra, but only now has Ghana got its first accredited domain name registrar.
Ghana Dot Com becomes Africa’s third ICANN-approved registrar, the first new accreditation on the continent since 2007.
The first African registrar was Burundi’s AfriRegister, the second Kheweul.com of Senegal.
Ghana Dot Com appears to be the dba of Network Computer Systems Ltd, the ISP that already manages Ghana’s .gh ccTLD.
Its chairman, Nii Quaynor, is a former member of the ICANN board of directors, elected in 2000 and serving until 2003.
Ghana has about 23 million citizens and almost one million internet users, according to InternetWorldStats.com.
ICANN switches off .mobi land-rush flipper
ICANN has terminated a domain name registrar that seems to have been made its business flipping land-rush domains, especially in .mobi.
Mobiline, doing business as DomainBonus.com, is an Israeli outfit that received its registrar accreditations about five years ago.
While it seems to have registered a very small number of domains, domainbonus.com did provide DNS for a few thousand dictionary .mobi domains, registered during the September 2006 land-rush.
A lot of these domains appeared to have been originally registered in the name of Mobiline’s owner, Alex Tesler.
Many have been since been flipped and archives of the DomainBonus front page show the firm was mainly preoccupied with aftermarket sales rather than fresh registrations.
ICANN has revoked its accreditation (pdf) for failure to pay its dues and escrow Whois data with Iron Mountain, as all registrars must.
ICANN is also switching off Western United Domains, a Spanish outfit that appears to have no web presence whatsoever, for the same reasons.
Registrars responsible for proxy cybersquatters
Domain name registrars can be liable when their customers break the law, if those customers use a privacy service, according to new ICANN guidance.
The ICANN advisory clarifies the most recent Registrar Accreditation Agreement, and seems primarily pertinent to UDRP cases where the registrar refuses to cooperate with the arbitrator’s request for proper Whois records.
The advisory says:
a Registered Name Holder licensing the use of a domain is liable for harm caused by the wrongful use of the domain unless the Registered Name Holder promptly identifies the licensee to a party providing the Registered Name Holder with reasonable evidence of actionable harm
In other words, if a domain gets hit with a UDRP claim or trademark infringement lawsuit, as far as the RAA is concerned the proxy service is the legal registrant unless the registrar quickly hands over its customer’s details.
Law enforcement and intellectual property interests have been complaining about registrars refusing to do so for years, most recently in comments on ICANN’s Whois accuracy study.
ICANN offers a definition of the word “promptly” as “within five business days” and “reasonable evidence” as trademark ownership and evidence of infringement.
I don’t think this ICANN guidance will have much of an impact on privacy services offered by the big registrars, which generally seem quite happy to hand over customer identities on demand.
Instead, this looks like it could be the start of a broader ICANN crackdown on certain non-US registrars offering “bulletproof” registrations to cybersquatters and other ne’er-do-wells.
I wouldn’t be surprised to find the number of ICANN de-accreditations citing refusal to cooperate with UDRP claims increasing in future.
The new ICANN document is a draft, and you can comment on it here.
AOL loses ICANN accreditation
AOL, one of the first five companies to become an ICANN-accredited registrar, appears to have let its accreditation expire.
The former internet giant is no longer listed on ICANN’s Internic registrar page, and DotAndCo.net’s data shows it lost its .com, .net and .org accreditations on April 27.
It’s hardly surprising. AOL’s profits are falling and it has been reorganizing itself ever since Time Warner returned it to life as an independent company last year.
It’s noteworthy because AOL was one of the first five registrars to challenge Network Solutions’ monopoly, when ICANN introduced competition to the domain name market in 1999.
In April 1999, the company participated in ICANN’s limited registrar “test-bed” experiment, alongside CORE, France Telecom, Melbourne IT and Register.com.
But domain names were never a big deal at the company.
AOL peaked at about 150,000 domains a few years ago and tailed off to a little more than a dozen at the end of 2009. Apparently, the company has decided to let its accreditation simply expire.
China connection to Go Daddy WordPress attacks
Go Daddy’s hosting customers are under attack again, and this time it looks like it’s more serious.
Reports are surfacing that WordPress sites hosted at Go Daddy, and possibly also Joomla and plain PHP pages there, are being hacked to add drive-by malware downloads to them.
Go Daddy has acknowledged the attacks, blaming outdated WordPress installations and weak FTP passwords, and has put up a page with instructions for cleaning the infection.
Last week, I was told that the first round of attacks was very limited. Today, the attackers seem to have stepped it up a notch.
As a result, Go Daddy could find itself in a similar situation to Network Solutions, which had a couple of thousand customer sites hacked a few weeks back.
The attacks appear to be linked to a well-known crime gang with a Chinese connection.
According to Sucuri, when a Go Daddy-hosted WordPress page is hacked, JavaScript is injected that attempts to redirect surfers to a drive-by attack from the domain kdjkfjskdfjlskdjf.com (don’t go there).
This domain was registered with BizCN.com, an ICANN-accredited Chinese registrar, but its name servers appear to have been created purely for the attack.
The registrant’s email address is hilarykneber@yahoo.com. This connects the attack to the “Kneber” botnet, a successful criminal enterprise that has been operating since at least December 2009.
A Netwitness study revealed the network comprised at least 74,000 hacked computers, and that the bulk of Kneber’s command and control infrastructure is based in China.
Since Kneber is known to be operated by a financially motivated gang, and it’s by no means certain that they’re Chinese, it’s probably inaccurate to suggest there’s something political going on.
However, I will note that Go Daddy was quite vocal about its withdrawal from the .cn Chinese domain name registration market.
Network Solutions, while it was quieter, also stopped selling .cn domains around the same time as the Chinese government started enforcing strict registrant ID rules last December.
Twenty registrars canned in 2009
ICANN shut down 20 domain name registrars in 2009, and is on course to do the same this year, according to numbers released today.
That’s up from seven de-accreditations in 2008, and twice as many as the previous record year, 2003.
ICANN can withdraw accreditation from a registrar, stopping its ability to register domains, if the registrar fails to escrow Whois information or pay its ICANN dues.
It looks like 2010 could well see a similar level of de-accreditations.
Five registrars were shuttered in the first quarter, and ICANN has sent warnings to five more this month.
Recent Comments