Latest news of the domain name industry

Recent Posts

ICANN fingers perps in new gTLD breach

Kevin Murphy, May 28, 2015, Domain Services

A small number of new gTLD registries and/or applicants deliberately exploited ICANN’s new gTLD portal to obtain information on competitors.

That’s my take on ICANN’s latest update about the exploitation of an error in its portal that laid confidential financial and technical data bare for two years.

ICANN said last night:

Based on the information that ICANN has collected to date our investigation leads us to believe that over 60 searches, resulting in the unauthorized access of more than 200 records, were conducted using a limited set of user credentials.

The remaining user credentials, representing the majority of users who viewed data, were either used to:

Access information pertaining to another user through mere inadvertence and the users do not appear to have acted intentionally to obtain such information. Access information pertaining to another user through mere inadvertence and the users do not appear to have acted intentionally to obtain such information. These users have all confirmed that they either did not use or were not aware of having access to the information. Also, they have all confirmed that they will not use any such information for any purpose or convey it to any third party; or

Access information of an organization with which they were affiliated. At the time of the access, they may not have been designated by that organization as an authorized user to access the information.

We can infer from this that the 60 searches, exposing 200 records, were carried out deliberately.

I asked ICANN to put a number on “limited set of user credentials” but it declined.

The breach resulted from a misconfiguration in the portal that allowed new gTLD applicants to view attachments to applications that were not their own.

ICANN knows who exploited the bug — inadvertently or otherwise — and it has told the companies whose data was exposed, but it’s not yet public.

The information may come out in future, as ICANN says the investigation is not yet over.

Was your data exposed? Do you know who accessed it? You know what to do.

Get NamesCon 2016 tickets at 80% off

Kevin Murphy, February 23, 2015, Domain Services

After its well-received 2015 show in Las Vegas last month, NamesCon has confirmed a third annual domain name conference for 2016 and is offering deeply discounted tickets for “super early birds” until the end of the month.

Until February 28, conference passes can be bought for $199. That’s an 80% discount on the regular $999 fee. No other early-bird discounts have yet been announced, but NamesCon says this is the “lowest” price the tickets are going to get.

As the event is targeted largely at domainers, NamesCon notes that tickets are non-transferable. Touts are not welcome, in other words.

The show will run from January 10 to 13 next year, in Las Vegas. The venue will be the reasonably priced Tropicana hotel for the third year in a row.

Conference producer Richard Lau said that the 2016 show will have a new sponsorship opportunity in the form of a “Meetery” on the first day.

With space for about 30 companies on small tables, the six-hour window will be “ideal for companies who do not want to man a booth for the entire conference but still want to be able to meet with all of the attendees,” Lau said.

NamesCon is also expanding the number of small tables available for sponsors that want to exhibit for the whole four days from six to 15 to 20, he said.

Tickets can be obtained through the NamesCon web site.

A quarter of registrar’s names are “illicit pharmacies”

Kevin Murphy, January 16, 2015, Domain Services

One in four of the domain names registered with the registrar NetLynx are linked to current, past or potential future rogue drug sites, according to online pharmacy monitor LegitScript.

The Mumbai-based registrar was hit with a breach notice by ICANN Compliance last week, over an alleged failure to investigate an abuse complaint about a single customer domain, tnawsol24h.com.

NetLynx did not adequately respond to ICANN’s calls from November 26 to January 5, according to the notice (pdf).

While ICANN did not identify the source or nature of the complaint, according to LegitScript it was filed by the UK Medicines and Healthcare products Regulatory Agency and it claimed that the domain was being used as a “rogue internet pharmacy”.

LegitScript did some research into NetLynx’s domains under management and now claims that it is not an isolated case.

Company president John Horton blogged:

at least a quarter of the registrar’s business is dependent on rogue Internet pharmacy registrations, with roughly 3,000 of the 12,000 domain names under the registrar’s portfolio taggable as current, past or “holding sites” for illicit online pharmacies.

Horton clarified for DI that the 3,000 number is extrapolated from the fact that LegitScript managed to categorize 1,820 out of the 7,000 NetLynx domains it could find as problematic.

Of those, 820 were “online and active” rogue pharmacies, he said. He gave canadian-drug-pharmacy.com, pills-delivery.net and pillsforlife.net as examples.

Another 780 were hosting rogue pharmacies in the past but have since been shut down, he said.

Finally, LegitScript categorized 220 as “meeting known patterns” for “holding sites” where illicit pharmacies may be launched in future. Horton said:

many of the spam pharma organizations use “holding domain names” (not all are online at any one time), so if the website was NOT currently online, we looked to a variety of data — known domain name patterns, screenshots, known rogue name servers, known rogue IP addresses, etc. — to determine the likelihood that a domain name is likely to be a rogue Internet pharmacy, and gave NetLynx the benefit of the doubt if there was any lack of certainty

LegitScript classifies online pharmacies as “rogue” if they offer to ship medicines without a prescription to people in jurisdictions where prescriptions are required.

Horton is now calling for ICANN to look into terminating NetLynx’s accreditation.

Seller’s remorse despite .club leading $1m NamesCon auction

Kevin Murphy, January 14, 2015, Domain Services

The Right Of The Dot and SnapNames auction here at the NamesCon conference in Las Vegas last night raised just shy of $1 million, in what attendees broadly seem to agree was a successful event.

The grand total was $990,851, with 87 out of the 134 lots hitting their reserve and selling during the live/online bidding.

Leading the pack was homecare.com, which sold for $350,000.

But that deal actually closed before the live event began, leaving .CLUB Domains’ wine.club at the top of the sold list with a winning $140,000 bid.

Despite the sale, registry CEO Colin Campbell — evidently disappointed he had not placed a higher reserve on the name, expressed some seller’s remorse on Twitter this morning.

.CLUB also offloaded reserved names weed.club ($16,000), fight.club ($13,500) and tequila.club ($8,000), among others.

.com of course had the best night, with carauctions.com going for $90,000, susan.com going for $34,000 and tik.com and vil.com both going for $33,000.

Organizer Mike Berkens took a $76,000 hit on sexeducation.com, which he purchased for $100,000 and sold without reserve for $24,000.

Also noteworthy was what I believe was the biggest bid of the night — a $1.2 million in-room bid for auctions.com, owned by .xyz registry CEO Daniel Negari.

The domain failed to meet its reserve, however, and will join the other unsold names in an extended online auction that begins this weekend.

NamesCon 2015 bigger, longer and more popular

Kevin Murphy, January 5, 2015, Domain Services

NamesCon 2015 is due to kick of in Las Vegas this coming weekend with about 50% more attendees that its inaugural outing last year.

Organizers tell me that so far roughly 750 people (not including press and staff) have registered to attend the conference, which is taking place for the second year at the Tropicana hotel. That’s up from the roughly 525 registered a week before the 2014 event.

Some are expecting the final turnout to top 800.

Registrations were boosted as 2014 came to a close by the announcement that NamesCon had acquired the rights to use the longstanding DomainFest brand and domain to promote its own show.

The show is due to run from Sunday, January 11 to Wednesday, January 14, a day longer than the year-ago event.

NamesCon is a bit of a strange beast, catering heavily to domainers but with also a strong series of sessions aimed at digital brand managers and the intellectual property side of the industry.

Where else could you see sessions called “Workshop: I’m Getting Sued – What Do I Do Now?” and “Making the Most of Your .BRAND and the Evolving Internet” running side by side?

For domainers, a highlight of the week may be the live domain auction, which is being run by Right Of The Dot and SnapNames from January 13 from 1630 until 1930 local time.

There are 350 names going to auction, in an eclectic mix of legacy and new gTLDs.

Currently, slightly more than half of the 23 names with bids are new gTLD domains, though their asking prices are a lot lower than the .coms on the list — most seeing bids in the $250 range compared to a top .com bid fo $51,000 for agree.com.

Domains that do not sell during the live event will carry over to an extended auction that ends February 5.

TLD Registry, which runs a couple of Chinese-script new gTLDs, has a strong presence at NamesCon too, sponsoring a day-long session on the Chinese domain market on the Sunday.

Keynote speakers during the conference proper include Akram Atallah, president of ICANN’s Global Domains Division, as well as executives from Go Daddy, Donuts, Uniregistry and others.

DI will be in attendance. I’ve agreed to do a presentation on DI PRO and industry metrics on Sunday, probably sharing the stage with another tools vendor, on Sunday, but the exact time and location have yet to be confirmed.

Conference passes are still available for $799 from the NamesCon web site. Registration on the door goes up to $849. For context, that’s still less than half the price you’d paid to go to TRAFFIC.