Recent Posts
- Americans and ICANNers avoid Kigali in droves
- RDRS stats improve a little in June
- Unstoppable Domains goes down after domain hijack
- Four more gTLDs in emergency measures
- New gTLDs and ccTLDs drive domain universe growth
- Eight interesting recent dot-brand registrations
- .me premium sales down
- Pride fails to reverse gay domains decline
- Unstoppable announces another new gTLD bid
- Blockchain naming firm gets ICANN accreditation
- ICANN takes over gTLD after Whois failures
- Verisign: would-be .com contract killers are “wrong”
- Five gTLDs at risk as registry goes AWOL
- Groups make flawed case that .com is a cartel
- RDRS usage hits all-time low
- A dot-brand so unloved they killed it twice
- PorkBun hits two million domain milestone
- Crawford returns to industry to head up Com Laude
- ICANN financial data dump a damp squib?
- Unstoppable plotting manga-themed gTLDs
- Governments call for new gTLD auctions ban
- ICANN names new CEO, and it isn’t Costerton
- ICANN: We will NOT police content
- More sticker shock as new gTLD fees could top $300,000
- ICANN slashes staff and domain prices could rise
- Secret new gTLD application revealed
- WhatsApp now linkifying new gTLDs, but…
- Outrage over ICANN’s new gTLD fees
- Barrett gets second term on ICANN board
- DotMusic delays gTLD launch again
- .tm prices to skyrocket next week
- Bitcoin gTLD gets launch dates
- First metaverse gTLD is announced
- Alibaba off the naughty step
- ICANN to kill auction fund bylaws change
- The people have spoken on RDRS and they said “Meh”
- ICANN restarts work on controversial Whois privacy rules
- GNSO mulls lawyering up over auction fund dispute
- Jury still out on ICANN’s content policing powers
- It now takes TWO WEEKS to get a Whois record with RDRS
- Travel expenses push ICANN into the red again
- ICANN preparing for ONE HUNDRED registry back-ends
- DNS Abuse Institute changes name
- A new way to game the new gTLD program
- .home, .mail and .corp could get unbanned
- Unstoppable to apply for Women in Tech gTLD
- Bob Parsons publishes autobiography
- GoDaddy getting a free pass from porn jail?
- Correction: Sinha’s seat is safe
- Chinese domains plummet again in 2023
- GoDaddy price increases lead to revenue growth
- D3 announces seventh blockchain gTLD client
- Taylor Swift applies for her .post domain
- .ad domains to go global soon
- Single-letter .com case back in court
- ICANN to slash costs as Verisign’s magic money tree dries up
- Community revolts over ICANN’s auction proceeds power grab
- Two seats up for grabs on Nominet board
- War takes steep toll on .ua domains
- .de worst TLD for CSAM — report
- .com still shrinking because of China
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- .my domains to be sold globally next month
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
New gTLD launches: registrar coverage at less than 40% of the market
Registrars representing less than 40% of the gTLD market are ready to offer new gTLDs during their launch phases, according to the latest stats from ICANN.
ICANN released yesterday a list (pdf) of the just 21 registrars that have signed the 2013 Registrar Accreditation Agreement and have been certified by IBM to use the Trademark Clearinghouse database.
Signing the 2013 RAA is a requirement for registrars that want to sell new gTLDs. Almost 150 registrars are currently on the new contract.
But being certified for the TMCH is also a requirement to sell names during the first 90 days of each new gTLD’s general availability, when the Trademark Claims service is running.
Together, the 21 registrars that have done both accounted for 59 million registered gTLD domain names (using August’s official numbers), which translated to 39.5% of the gTLD market.
It’s a high percentage due to the presence of Go Daddy, with its 48.2 million gTLD names. The only other top-10 registrar on the list is 1&1.
Twelve of the 21 registrars on the list had fewer than 40,000 names under management. A couple have fewer than 100.
Only one new gTLD, dotShabaka Registry’s شبكة., is currently in its Trademark Claims period.
The second batch, comprising Donuts’ first seven launches, isn’t due to hit until January 27, giving just a few weeks for the certified list to swell.
There’ll be 33 new gTLD in Claims by the end of February.
The rate at which new registrars are being certified by IBM is not especially encouraging either. Only four have been added in the last month.
Some registrars may of course choose to work via other registrars, as a reseller, rather than getting certified and doing the TMCH integration work themselves.
Latest Go Daddy phishing attack unrelated to 2013 RAA
Fears that the 2013 Registrar Accreditation Agreement would lead to new phishing attacks appear to be unfounded, at least so far.
The 2013 RAA, which came into force at most of the big registrars on January 1, requires registrars to verify the registrant’s email address or phone number whenever a new name is registered.
It was long predicted that this new provision — demanded by law enforcement — would lead to phishers exploiting registrant confusion, obtaining login credentials, and stealing valuable domain names.
Over the weekend, it looked like this prediction had come true, with posts over at DNForum saying that a new Go Daddy scam was doing the rounds and reports that it was related to the 2013 RAA changes.
I disagree. Shane Cultra posted a screenshot of the latest scam on his blog, alongside a screenshot of Go Daddy’s actual verification email, and the two are completely dissimilar.
The big giveaways are the “Whois Data Reminder” banner and “Reminder to verify the accuracy of Whois data” subject line.
The new attack is not exploiting the new 2013 RAA Whois verification requirements, it’s exploiting the 10-year-old Whois Data Reminder Policy, which requires registrars annually to remind their customers to keep their contact details accurate.
In fact, the language of the new scam has been used in phishing attacks against registrants since at least 2010.
That’s not to say the attack is harmless, of course — the attacker is still going to steal the contents of your Go Daddy account if you fall for it.
We probably will see attacks specifically targeting confusion about the new address verification policy in future, but it seems to me that the confusion we’re seeing with the latest scam may be coincidental.
Go Daddy told DI yesterday that the scam site in question had already been shut down. It’s not clear if anyone fell for it while it was live.
1&1’s new gTLD ads banned for “misleading” viewers
TV ads promoting 1&1’s new gTLD pre-registration services have been banned from the UK’s airwaves after being ruled “likely to mislead” by the Advertising Standards Authority.
The ads were part of probably the biggest new gTLD marketing outreach to date, a worldwide campaign I’ve heard is costing 1&1 up to $80 million. The UK ad stated:
Do you own a company? Or an online shop? Are you an estate agent? Or a car dealer? Are you from London? Or maybe Scotland? Are you looking for a great new web or e-mail address? Then choose from over 700 new domains. Pre-order yours for free, before someone else does, and link it to your website.
The ASA ruled that the ads would have led consumers to believe that they would definitely get the name they pre-registered as soon as it became available.
In fact, of course, allocation is dependent largely on registry policy, Sunrise registrations, name collisions blocking, and whatever other barriers ICANN can think up in the meantime.
The ASA said in its decision:
Whilst we considered consumers would understand the reference to ‘pre-order’ to mean that the domain names were not currently available, we considered they would understand the ad to mean that they could place an order with 1&1 Internet that would secure their chosen domain name when it became available. However, we understood that that was not the case and that upon receipt of a pre-order, 1&1 Internet would pass on the customer’s request to the relevant domain name registry, who would apply their own allocation process when the requested domain name became available. We therefore considered the presentation of the ad was likely to mislead.
The ad therefore “must not appear again in its current form”, the ASA ruled.
Finally, domain-slamming registrar gets ICANN breach notice
Domain “slamming” registrar Brandon Gray Internet Services, which does business as NameJuice.com, has finally received its first ICANN compliance notice.
If you’ve been around the industry for a while you’ll know Brandon Gray better as Domain Registry of America, Domain Registry of Canada, Domain Renewal Group and various other pseudonyms.
DROA is known for being the prime perpetrator of the old “slamming” scam, where fake postal renewal notices that look like invoices trick busy or gullible registrants into transferring their names.
It was sued for slamming by Register.com back in 2002, spanked by the UK’s Advertising Standards Agency as recently as 2009, and de-accredited by .ca registry CIRA.
There’s a list of the various times it’s run afoul of regulators over on Wikipedia.
ICANN yesterday sent a breach notice (pdf) to Brandon Gray, saying the company failed to “maintain and make available to ICANN registration records relating to dealings with the Registered Name Holder” of businesspotion.com, in violation of the Registrar Accreditation Agreement.
A Whois look-up reveals that businesspotion.com has belonged to the same registrant since 2009. However, in April 2011 it was transferred from 1&1 to Brandon Gray (DROA/NameJuice).
I can only guess why it might have been transferred.
However, the material ICANN wants only relates to the period from July this year.
It appears from the compliance notice that the owner of the domain tried to transfer his name away from DROA recently but claims to have not received the necessary authorization codes.
Brandon Gray has until January 13 to provide ICANN with the requested documentation or face losing its accreditation.
Back in 2011, the last time Brandon Gray tried to slam me, I asked: “Isn’t it about time ICANN shut these muppets down?”
Hopefully, that wish is a step closer to reality today.
Go Daddy to take $2,500 profit on Donuts’ first-day domains
Donuts’ pricey Early Access Program for its new gTLDs could prove quite lucrative for registrars.
Go Daddy today revealed that it’s charging $12,500 and up for first-day “priority” registrations in 14 Donuts gTLDs, a $2,500 profit on Donuts’ EAP registry fee, which I believe is $10,000.
The EAP is Donuts’ alternative to a traditional landrush period.
Rather than charging premium landrush fees and then running an auction for contested domains, every available domain has a standard premium buy-it-now price that is reduced every day for a week until the fee hits the standard reg fee.
It’s Dutch-auction-like, with a first-come-first-served component.
The EAP registry fees start at $10,000, go to $2,500 on day two, $950 on day three, $500 on day four and $100 from days five through day seven. Then they go to the base fee, which depends on gTLD but typically translates to about $40 at the check-out.
Go Daddy’s respective EAP retail prices are $12,539.99, $3,164.99, $1,239.99, $689.99 and $189.99.
Complicating matters, these are currently “priority pre-registration” fees, so the company will still have to successfully grab the pre-registered names from the registry when they become available.
While customers are billed today, they may not get the name they want. If Go Daddy fails to secure the name it will issue a full refund.
Complicating matters further, the company is accepting multiple pre-registrations on any given name and will auction it off to the highest bidder if more than one person pre-registers at the same level and Go Daddy manages to grab the name.
So $12,500 may just be the tip of the iceberg.
Complicating matters further further, Go Daddy’s site is currently not particularly clear — at least to this elderly hack — which components of its fees are refundable and which are not.
This slogan, currently in use on the Go Daddy pre-reg site, appears to me to be absolute nonsense.
The 14 Donuts gTLD currently on offer are: .estate, .photography, .ventures, .guru, .bike, .clothing, .gallery, .singles, .camera, .lighting, .plumbing, .equipment, .graphics and .holdings.
Jetpack Domains hit with ICANN breach notice
A small Californian registrar has been sent a contract breach notice by ICANN.
ICANN says Irvine-based Jetpack Domains has failed to comply with a scheduled audit, breaking the terms of the Registrar Accreditation Agreement that require it to supply records on demand.
The company has until January 2 to provide ICANN with the data it has asked for or risk losing its accreditation, ICANN said (pdf).
Jetpack, which had fewer than 6,000 gTLD domains under management at the last count, appears to use DomainCocoon for registrar management services.
Small Kiwi registrar loses accreditation
ICANN has terminated the registrar accreditation of Pacnames, a small New Zealand registrar.
The roughly 10,000 domain names the company had under management will now be transferred to Net-Chinese, a Taiwanese registrar that is not much bigger as measured by DUM.
The termination was voluntary, according to ICANN, but it follows the suspension of Pacnames’ accreditation in October.
ICANN had held the company in breach of its Registrar Accreditation Agreement for failing to provide records about 25 domain names upon request.
The story told in the October breach notice (pdf) makes it sound like Pacnames had refused to provide the data because it was “burdensome” and too much like an “audit”.
Pacnames’ customers, if there are any, should now receive emails from Net-Chinese informing them about the transfer. Which, let’s face it, are definitely going to look dodgy.
ICANN cans “Spam King” registrar
ICANN has terminated the registrar accreditation of Dynamic Dolphin, which it turned out was owned by self-professed “Spam King” Scott Richter.
The company has until December 20 to take down its ICANN logo and cease acting as a registrar.
ICANN, in its termination notice (pdf) late last week, said that it only became aware earlier this month that Richter was the 100% owner of Dynamic Dolphin.
Richter grew to fame a decade ago for being one of the world’s highest-profile spammers. He was sued for spamming by Microsoft and Myspace and was featured on the popular TV program The Daily Show.
As well as being a thoroughly unpleasant chap, he has a 2003 conviction for grand larceny, which should disqualify him from being the director of an ICANN-accredited registrar.
He removed himself as an officer on October 9 in response to ICANN’s persistent inquiries, according to ICANN’s compliance notice.
But he was much too late. ICANN has terminated the accreditation due to the “material misrepresentation, material inaccuracy, or materially misleading statement in its application”.
The question now has to be asked: why didn’t ICANN get to this sooner? In fact, why was Dynamic Dolphin allowed to get an accreditation in the first place?
Former Washington Post security reporter Brian Krebs has been all over this story for five years.
Back in 2008, with a little help from anti-spam outfit KnujOn, he outed Richter’s links to Dynamic Dolphin when it was just a Directi reseller.
Yesterday, Krebs wrote a piece on his blog going into a lot of the background.
Another question now is: which registrar is going to risk taking over Dynamic Dolphin’s registrations?
As of the last registry reports, Dynamic Dolphin had fewer than 25,000 gTLD domains under management.
According to ICANN’s termination notice, 13,280 of these use the company’s in-house privacy service, and 9,933 of those belong to just three individuals.
According to DomainTools, “Dynamic Dolphin Inc” is listed as the registrant for about 23,000 names.
According to KnujOn’s research and Krebs’s reporting, the registrar was once among the most spam-friendly on the market.
1&1 prices first four Donuts gTLDs at $50-$80 a year
The registrar 1&1 Internet has started selling pre-registrations in the first four Donuts new gTLDs for between $50 and $80 a year.
Three gTLDs — .singles, .bike and .clothing — carry a $49.99 price tag at the company’s US site. In the UK, they’re priced at £29.99. A fourth gTLD, .holdings, costs $79.99/£49.99.
Customers are only billed if 1&1 manages to grab the domain when the relevant gTLD launches.
The annual renewal fees appear to be the same as the pre-registration fees, but it’s not yet clear whether they’re the same as the standard reg fee when these gTLDs go to general availability next year.
As we’ve seen already via Go Daddy, some new gTLD registries are choosing to charge higher fees for pre-registered names, due to the more relaxed pricing regulations imposed by ICANN.
1&1 has been widely advertising new gTLDs on TV in the US and Europe for weeks — rumor has it the campaign’s budget is around $80 million — and has amassed four million non-binding pre-registrations to date.
Meanwhile, ICANN today warned internet users about the risks of pre-registering domains.
Tucows takes over as Cheapies loses accreditation
ICANN has terminated the registrar Cheapies.com and is to transfer its registrations to Tucows.
Cheapies had fewer than 12,000 gTLD domains under management judging by the last available registry reports.
The registrar was terminated two weeks ago, having previously having its accreditation suspended for 90 days, for various violations of the Registrar Accreditation Agreement mainly related to records keeping.
ICANN said Cheapies’ customers should receive an email from Tucows instructing them how to proceed.
Recent Comments