Recent Posts
- GNSO mulls lawyering up over auction fund dispute
- Jury still out on ICANN’s content policing powers
- It now takes TWO WEEKS to get a Whois record with RDRS
- Travel expenses push ICANN into the red again
- ICANN preparing for ONE HUNDRED registry back-ends
- DNS Abuse Institute changes name
- A new way to game the new gTLD program
- .home, .mail and .corp could get unbanned
- Unstoppable to apply for Women in Tech gTLD
- Bob Parsons publishes autobiography
- GoDaddy getting a free pass from porn jail?
- Correction: Sinha’s seat is safe
- Chinese domains plummet again in 2023
- GoDaddy price increases lead to revenue growth
- D3 announces seventh blockchain gTLD client
- Taylor Swift applies for her .post domain
- .ad domains to go global soon
- Single-letter .com case back in court
- ICANN to slash costs as Verisign’s magic money tree dries up
- Community revolts over ICANN’s auction proceeds power grab
- Two seats up for grabs on Nominet board
- War takes steep toll on .ua domains
- .de worst TLD for CSAM — report
- .com still shrinking because of China
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- .my domains to be sold globally next month
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
At eleventh hour, most .uk registrants still don’t own their .uk names
Less than a quarter of all third-level .uk registrants have taken up the opportunity to buy their matching second-level domain, just a few months before the deadline.
According to February stats from registry Nominet, 9.76 million domains were registered under the likes of .co.uk and .org.uk, but only 2.27 million domains were registered directly under .uk, which works out at about 23%.
Nominet’s controversial Direct.uk policy was introduced in June 2014, with a grandfathering clause that gave all third-level registrants five years to grab their matching .uk domain before it returns to the pool of available names.
So if you own example.co.uk, you have until June 25 this year, 110 days from now, to exercise your exclusive rights to example.uk.
Registrants of .co.uk domains have priority over registrants of matching .org.uk and .me.uk domains. Nominet’s Whois tool can be used to figure out who has first dibs on any given string.
At least two brand protection registrars warned their clients this week that they will be at risk of cybersquatting if they don’t pick up their direct matches in time. But there’s potential for confusion here, after the deadline, whether or not you own a trademark.
I expect we could see a spike in complaints under Nominet’s Dispute Resolution Service (the .uk equivalent of UDRP) in the back half of the year.
Nominet told DI in a statement today:
The take up right now is roughly in line with what we envisaged. We knew from the outset that some of the original 10 million with rights would not renew their domain, some would decide they did not want the equivalent .UK and some would leave it to the last minute to decide or take action. The feedback from both registrants and registrars, and the registration data, bears this out.
The statement added that the registry has started “ramping up” its outreach, and that in May it will launch “an advertising and awareness campaign” that will include newspapers, radio and trade publications.
Mohan takes the reins at Afilias
Ram Mohan appears to have taken over the C-suite at Afilias.
The long-time chief technology officer was also yesterday named to the newly created role of chief operating officer, with the suggestion that he’s also taken over much of the work of CEO Hal Lubsen.
Afilias said Mohan will continue to report to Lubsen, but that “most all of Mr. Lubsen’s previous direct reports will now report to Mr. Mohan”.
Lubsen, who has been listed on the Afilias web site as “72 years old” for at least four years, will “continue to be responsible for and oversee finance, mergers and acquisitions and most legal matters.”
Mohan has been with the company as CTO since the very outset, when it was awarded .info back in 2001. He wrapped up a 10-year term on ICANN’s board of directors last October.
He’s going to carry on with the CTO’s job “initially”, Afilias said, but it sounds like a replacement will be sought.
Trademark posse fails to block Whois privacy policy
The ICANN community’s move to enshrine Whois privacy into formal consensus policy is moving forward, despite votes to block it by intellectual property interests.
During a special meeting yesterday, the GNSO Council voted to approve a set of recommendations that would (probably) bring ICANN’s Whois policy into compliance with the General Data Protection Regulation.
But four councilors — Paul McGrady and Flip Petillion of the Intellectual Property Constituency and Marie Pattullo and Scott McCormick of the Business Constituency — voted against the compromise deal.
Their downvotes were not enough to block it from passing, however. It has now been opened for a month of public comments before being handed to the ICANN board of directors for final approval, whereupon it will become ICANN’s newest consensus policy and binding on all contracted parties.
McGrady, an lawyer with Winston Strawn, claimed that the Expedited Policy Development Process working group that came up with the recommendations failed to reach the level of consensus that it had claimed.
“The consensus call was broken,” he said, adding that the EPDP’s final report “reflects consensus where there really wasn’t any.”
The GNSO was due to vote 10 days ago, but deferred the vote at the request of the IPC and BC. McGrady said that both groups had tried to muster up support in their communities for a “yes” vote in the meantime, but “just couldn’t get there”.
Speaking for the BC from a prepared statement, Pattullo (who works for European brand protection group AIM) told the Council:
The report is a step backwards for BC members’ interests compared to the Temp Spec, especially as the legitimate purposes for collecting and processing data are insufficiently precise, and do not include consumer protection, cybercrime, DNS abuse and IP protection.
The Temp Spec is the Temporary Specification currently governing how registries and registrars collect and publish Whois data. It was created as an emergency measure by the ICANN board and is due to expire in May, where it will very probably be replaced by something based on the EPDP recommendations.
In response to the IPC/BC votes, Michele Neylon of the Registrars Constituency and Ayden Férdeline of the Non-Commercial Stakeholders Group read statements claiming that trademark interests had been given substantial concessions during the EPDP talks.
Neylon in particular had some harsh words for the holdout constituencies, accusing them of “bad faith” and pointing out that the EPDP spent thousands of hours discussing its recommendations.
“Our members would want any number of obligations this report contains to be removed, but despite the objections we voiced our support for the final product as a sign of compromise and support for the entire multistakeholder model,” he said.
“Given the objections of certain parts of the community it’s unclear how we can ask this group to carry on with the next phase of its work at the same pace,” he said. “Given the unwillingness of others to participate and negotiate in good faith, how can we ask our reps to spend hours compromising on this work when it’s clear others will simply wait until the last minute and withdraw their consent for hard-fought compromise.”
The EPDP had a hard deadline due to the imminent expiration of the Temp Spec, but that’s not true of its “phase two” work, which will explore possible ways trademark enforcers could get access to redacted private Whois data.
Unfortunately for the IP lobby, there’s a very good chance that this work is going to proceed at a much slower pace than phase one, which wrapped up in basically six months.
During yesterday’s Council call, both Neylon and NCSG rep Tatiana Tropina said that the dedication required of volunteers in phase one — four to five hours of teleconferences a week and intensive mailing list discussions — will not be sustainable over phase two.
They simply won’t be able to round up enough people with enough time to spare, they said.
Coincidentally, neither the registrars nor the non-coms have any strong desire to see a unified access solution developed any time soon, so a more leisurely pace suits them politically too.
It will be up to the EPDP working group, and whoever turns out to be its new chair, to figure out the timetable for the phase two work.
Nevett headhunts top execs from three rivals
Public Interest Registry has filled out its executive team by poaching senior staff from rivals Afilias, Donuts and Neustar.
Judy Song-Marshall of Neustar has joined as chief of staff, Joe Abley of Afilias is the new chief technology officer and Anand Vora has joined from Donuts as VP of business affairs.
They’re the first senior level appointments to be announced since Donuts co-founder Jon Nevett was appointed CEO three months ago.
PIR, the non-profit which runs .org and related gTLDs, has also let it be known that it’s looking for a chief financial officer. The job ad can be found here.
Internet to lose its .co.ck? Cook Islands mulls name change
The government of the Cook Islands is reportedly thinking about changing its name, putting a question mark over the long-term longevity of its .ck top-level domain.
The AFP is reporting that an exploratory committee has been set up to pick a new name for the country, which is currently named after British explorer James Cook.
The new name would be in the local language, Cook Islands Maori, but would also reflect the country’s Polynesian heritage and “strong Christian belief”, AFP reports.
The Cook Islands is in the Pacific Ocean, about 3,000km from New Zealand. It gained independence in 1965 but retains strong ties to NZ. It has about 12,000 citizens.
Telecom Cook Islands has been running its ccTLD, .ck, since 1995. Registrations, which are a few hundred bucks a year, are only possible at the third level, under .co.ck, .org.ck and so on.
It appears from reporting that any formal name change is still a long way off, but it seems possible that a change of name could well lead to a change of ISO 3166-1 string and therefore a change of ccTLD.
As I explained in my post about the possible loss of .io last week, any such change would take years to roll through the ICANN system. Nobody would lose their domains overnight.
But perhaps the most famous .ck domain appears to have already gone dormant.
Fictional mid-noughties hipster Nathan Barley, antihero of the Charlie Brooker sitcom of the same name, owned trashbat.co.ck, as the opening shot of the show established.
Sadly, that domain, which unlike clownpenis.fart actually existed and was used to promote the short-lived series, appears to stop resolving three or four years ago.
Donuts founder replaces Pitts as MMX’s premium guru
MMX has hired one of Donuts’ recently departed co-founders to market its premium domain name inventory, the company said today.
Dan Schindler, formerly Donuts’ executive VP, has been hired as a “special advisor”, tasked with “monetizing” premiums in the US and Europe.
He appears to be functionally replacing Victor Pitts, who was hired as director of premium sales two years ago. Pitts appears to have left the company in January.
MMX, which counts .vip, .law and .luxe among its stable of 32 gTLDs, expects to report premium sales for 2018 of around $2.3 million.
The company has also hired domain consultant Christa Taylor, founder and CEO of dottba, as its new chief marketing officer, a newly created position.
News of the appointments was released as MMX published another preliminary trading update ahead of its final 2018 financial results next month.
Here are some more nuggets from the announcement:
- Total domain registrations so far in 2019 up 38% to 1.84 million compared to a year ago.
- Billings up 129% year-on-year due to contributions from ICM Registry and a 40% increase in sales of .vip and .luxe domains in China.
- ICM’s porn-themed domains are renewing at 91%.
- Integration of .luxe into two more blockchain platforms — NameCoin and XAYA — is underway.
MMX expects to announce its full-year results April 3.
Phishing still on the decline, despite Whois privacy
The number of detected phishing attacks almost halved last year, despite the fact that new Whois privacy rules have made it cheaper for attackers to hide their identities.
There were 138,328 attacks in the fourth quarter of 2018, according to the Anti-Phishing Working Group, down from 151,014 in Q3, 233,040 in Q2, and 263,538 in Q1.
That’s a huge decline from the start of the year, which does not seem to have been slowed up by the introduction in May of the General Data Protection Regulation and ICANN’s Temp Spec, which together force the redaction of most personal data from public Whois records.
The findings could be used by privacy advocates to demonstrate that Whois redaction has not lead to an increase in cybercrime, as their opponents had predicted.
But the data may be slightly misleading.
APWG notes that it can only count the attacks it can find, and that phishers are becoming increasingly sophisticated in how they attempt to avoid detection. The group said in a press release:
There is growing concern that the decline may be due to under-detection. The detection and documentation of some phishing URLs has been complicated by phishers obfuscating phishing URLs with techniques such as Web-spider deflection schemes – and by employing multiple redirects in spam-based phishing campaigns, which take users (and automated detectors) from an email lure through multiple URLs on multiple domains before depositing the potential victim at the actual phishing site.
It also speculates that criminals once involved in phishing may have moved on to “more specialized and lucrative forms of e-crime”.
The Q4 report (pdf) also breaks down phishing attacks by TLD, though comparisons here are difficult because APWG doesn’t always release this data.
The group found .com to still have the most phishing domains — 2,098 of the 4,485 unique domains used in attacks, or about 47%. According to Verisign’s own data, .com only has 40% market share of total registered domains.
But new, 2012-round gTLDs had phishing levels below their market share — 4.95% of phishing on a 6.83% share. This is actually up compared to the 3% recorded by APWG in Q3 2017, the most recent available data I could find.
Only two of the top 20 most-abused TLDs were new gTLDs — .xyz and .online, which had just 70 attack domains between them. That’s good news for .xyz, which in its early days saw 10 times as much phishing abuse.
After .com, the most-abused TLD was .pw, the ccTLD for Palau run by Radix as an unrestricted pseudo-gTLD. It had 374 attack domains in Q4, APWG said.
Other ccTLDs with relatively high numbers included several African zones run as freebies by Freenom, as well as the United Kingdom’s .uk and Brazil’s .br.
Phishing is only one form of cybercrime, of course, and ICANN’s own data shows that when you take into account spam, new gTLDs are actually hugely over-represented.
According to ICANN’s inaugural Domain Abuse Activity Reporting report (pdf), which covers January, over half of cybercrime domains are in the new gTLDs.
That’s almost entirely due to spam. One in 10 of the threats ICANN analyzed were spam, as identified by the likes of SpamHaus and SURBL. DAAR does not include ccTLD data.
The takeaway here appears to be that spammers love new gTLDs, but phishers are far less keen.
ICANN did not break down which gTLDs were the biggest offenders, but it did say that 52% of threats found in new gTLDs were found in just 10 new gTLDs.
This reluctance to name and shame the worst offenders prompted one APWG director, former ICANN senior security technologist Dave Piscitello, to harshly criticize his former employer in a personal blog post last month.
Registrars given six months to deploy Whois killer
ICANN has started the clock ticking on the mandatory industry-wide deployment of RDAP.
gTLD registries and registrars have until August 26 this year to roll out RDAP services, which will one day replace the age-old Whois spec, ICANN said this week.
Registration Data Access Protocol fulfills the same function as Whois, but it’s got better support for internationalization and, importantly given imminent work on Whois privacy, tiered access to data.
ICANN’s RDAP profile was created in conjunction with contracted parties and public comments. The registries and registrars knew it was coming and told ICANN this week that they’re happy for the 180-day implementation deadline to come into effect.
The profile basically specs out what registrars and registries have to show in their responses to Whois (or RDAP, if you’re being pedantic) queries.
It’s based on the current Temporary Specification for Whois, and will presumably have to be updated around May this year, when it is expected that the Temp Spec will be replaced by the spec created by the Whois EPDP.
Neustar completes .in migration
The transfer of India’s suite of ccTLDs from Afilias to Neustar is done.
NIXI, the .in registry, announced today: “The transition of .IN to its new Neustar-backed Registry platform is now complete.”
With 2.2 million names, not counting names in NIXI’s plethora of localized transliterations, .in is the third-largest TLD migration, behind the 3.1 million .au names that made the reverse journey from Neustar to Afilias last year and the 2.7 million .org names that went from Verisign to Afilias in 2003.
The .in migration started yesterday. NIXI had expected up to 48 hours downtime at the registry EPP level, with obviously no DNS downtime.
The name servers for .in and its IDN equivalents currently all simultaneously include Afilias-owned and Neustar-owned servers.
An Afilias lawsuit against the Indian government, which claimed Neustar lacked experience with Indian scripts and attempted to block the transition, appears to have been dropped last week.
Neustar is reportedly charging NIXI $0.70 per transaction, $0.40 less than Afilias had bid to renew its contract. It won the contract after an open bidding process last August.
Scottish registry dumps the pound over Brexit fears
The .scot gTLD registry has decided to dump the British pound as its currency of choice, due to fears over Brexit.
DotScot’s back-end, CORE, told registrars this week that it will start billing in euros from March 29.
The switch is being made due to “the expected volatility in currency exchange rates between GBP and other main currencies post-Brexit”.
March 29 is currently enshrined in UK law as the date we will formally leave the European Union, though the interminable political machinations at Westminster are making it appear decreasingly unlikely that this date could be extended.
CORE said that the prices for .scot registrations, renewals and transfers will be set at €1.14 for each £1 it currently charges. That’s the average exchange rate over the last 12 months, registrars were told.
.scot is a geographic gTLD, rather than a ccTLD, which was approved in ICANN’s 2012 application round. It has about 11,000 domains under management.
Its largest registrar, 1&1 Ionos (part of Germany’s United Internet), charges £40 a year.
Only 38% of Scots voted in favor of Brexit back in 2016, the lowest of any of the UK’s four nations, with no region of Scotland voting “Leave”.
Naturally, a great many Scots believe they’re being dragged out of the EU kicking and screaming by their ignorant, English-bastard neighbors. Which strikes me as a fair point.
Recent Comments