Recent Posts
- Could ICANN’s chair be ousted by NomCom?
- Chinese domains plummet again in 2023
- GoDaddy price increases lead to revenue growth
- D3 announces seventh blockchain gTLD client
- Taylor Swift applies for her .post domain
- .ad domains to go global soon
- Single-letter .com case back in court
- ICANN to slash costs as Verisign’s magic money tree dries up
- Community revolts over ICANN’s auction proceeds power grab
- Two seats up for grabs on Nominet board
- War takes steep toll on .ua domains
- .de worst TLD for CSAM — report
- .com still shrinking because of China
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
Dyson says new gTLDs will kill the DNS
Former ICANN chair Esther Dyson thinks apps and new gTLDs will cause internet users to abandon domain names.
In an article for TechPresident entitled “Is the Open Web Doomed? Open Your Eyes and Relax“, Dyson writes:
Right now, we’re moving slowly from open data and APIs and standards, to a world of Facebook and apps. We’re likely to see abandonment of the DNS by consumers both because of those apps, and a tragedy of the commons where new Top-Level Domain names (.whatevers and .brands) confuse users and lead to more use of the search box or links within apps.
The point seems to run counter to the rest of her argument, which is that the open web will continue to be used even while Facebook carves away its own little corner of it and that the whole “walled garden vs open web” war is fought in cycles.
(At least, I think that’s what she’s saying, it’s not an easy read.)
I always find these arguments confusing.
If consumers are not using the DNS, where are these “search boxes” and “links within apps” sending them? IP addresses? How do the consumers know they got to where they wanted to go?
ICANN worried about defensive gTLDs
Why is ICANN so misunderstood?
That’s the question at the heart of a public comment period into concerns about “defensive” new generic top-level domain applications that the organization opened up last night.
ICANN wants to know why so many companies seem to think they’ll need to apply for a dot-brand gTLD even though they don’t want one.
there are reports that parties believe that they will need to submit defensive gTLD applications to protect their trademarks, regardless of whether they are interested in using or developing a gTLD.
ICANN seeks public comment on the sources of this perception and how it can be addressed.
The comment period serves three purposes — it’s designed to raise awareness about rights protection mechanisms as well as soliciting input about defensive applications.
It will also let ICANN show the US Congress, which is worried about this kind of thing, that it’s doing something to address the problem.
So why are so many people worried about the perceived need to defensively apply for dot-brands?
The main answer, I think, is pretty straightforward:
The Applicant Guidebook is 349 pages long.
Hardly anybody has read the damn thing, not even some of the “experts” that persist on appearing in the media to complain about numeric gTLDs or to confidently predict GE and LG will apply for dot-brands.
So what do people do? They get somebody else who has read it to explain what it means.
These somebody elses are either consultants and registry providers, which are financially incentivized to get companies to apply, or they’re organizations that want the whole program stopped, which are not above deliberately misrepresenting the rules in order to whip up outrage.
I’m not casting every consultant in the same light here, of course. Many will turn away business if it’s not a good fit, but let’s not pretend that there hasn’t been scaremongering.
And let’s remember that for most regular companies registering a domain name is not an opportunity, it’s a headache. It’s at best a minor irritation and at worst a costly shakedown.
That thinking has clearly translated into the new gTLD space.
Poorly informed people think they’re being asked to register a very expensive domain name, and in their experience registering a domain name is a defensive measure 99% of the time.
Because ICANN has spent the last six months painstakingly avoiding saying anything positive about new gTLDs, it’s been left to the consultants and registries to try to explain the opportunities.
They’re understandably looked on with suspicion, and not only because of the aforementioned distrust of the industry – this new gTLD thing is unproven and there’s a perception that previous gTLDs have “failed” because you don’t see a .biz every time you turn on the TV.
Anyway, speaking of shakedowns, DomainIncite PRO subscribers have access to an in-depth analysis of scenarios in which “defensive” applications may and may not be appropriate. Read it here.
RIAA backs .music new gTLD bid
The Recording Industry Association of America has picked a side. It’s supporting Far Further’s application for the .music generic top-level domain, according to the company.
The RIAA is one of over a dozen music industry groups that are currently listed as supporters of the Far Further bid.
Among them is the influential International Federation of Phonographic Industries and The Recording Academy, which hands out the Grammys.
The support was hard won, according to Far Further president John Styll.
“The RIAA put together a loose coalition of organizations from sectors from around the world and ran a pretty intensive RFI process,” he said.
The company beat off competition from several other respondents and received word that the RIAA would support its .music application a few months ago, he said.
It’s been clear for some time that any .music applicant that does not have the backing of the RIAA will very likely get beaten up by the notoriously protective organization instead.
The RIAA wrote to the US Department of Commerce last August to demand that any music-themed gTLD should implement “heightened security measures” to prevent copyright infringement.
And that’s pretty much what Far Further has promised.
Its .music would be restricted, along the same lines as gTLDs such a .pro, to card-carrying members of what the company calls “accredited Global Music Community Members”.
“It’s not open to everyone,” Styll said. “You’d have to join an organization.”
Amateur bands would have to be members of an accredited songwriters association to get a .music address, for example.
In addition, the content of .music web sites would be policed in a similar way to .xxx or .cat, with regular spidering to ensure the content does not break the rules.
“We’re definitely looking at content, and besides the vetting process, in the registrant agreement there’ll be a warrant you’re not going to violate anyone’s intellectual property rights,” said Styll.
“We’re retaining the right to conduct searches,” he said. “If we find evidence of infringing activity we’ll give you the opportunity to correct that, or we can take down the site.”
Far Further is not the only known .music applicant, of course.
Constantine Roussos of Music.us and MyTLD has been passionately campaigning for the gTLD for years, and his enthusiasm has not waned even if his chances have.
“We’re still going after .music,” he confirmed yesterday. He added that he expects it to be a two-horse race, given these recent developments.
Make no mistake, with backing from the RIAA and other influential industry groups Far Further is now the runaway favorite in the battle for .music. Roussos has quite a fight on his hands.
DomainIncite PRO subscribers can read more about it here.
ICANN board seat up for reelection
ICANN’s Address Supporting Organization has kicked off an election for one of its two official representatives on the ICANN board of directors.
Director Ray Plzak sees his three-year term come to an end in June. He’s standing for reelection, but has competition from three other candidates.
The ASO represents the oft-overlooked IP address side of the ICANN house. Its members belong to the five Regional Internet Registries that are responsible for doling out IP space.
In this election, all four candidates are from ARIN, the North American RIR community: Plzak, Eric Brunner-Williams, Martin Levy and William Manning.
The winner will be selected by the ASO’s ruling Address Council in May. Until April 19, the ASO wants public comments on the candidates.
Verisign: our DNS was not hacked
Verisign today reiterated that the recently revealed 2010 security breaches on its corporate network did not affect its production domain name system services.
In a statement, Verisign said:
After a thorough analysis of the attacks, Verisign stated in 2011, and reaffirms, that we do not believe that the operational integrity of the Domain Name System (DNS) was compromised.
We have a number of security mechanisms deployed in our network to ensure the integrity of the zone files we publish. In 2005, Verisign engineered real-time validation systems that were designed to detect and mitigate both internal and external attacks that might attempt to compromise the integrity of the DNS.
The statement followed several news reports that covered the hacks and speculated about the mayhem that could ensue if Verisign’s root or .com zone systems were ever breached.
The information the company has released so far suggests that the attacks were probably against back-office targets, such as user desktops, rather than its sensitive network operations centers.
New gTLD applications briefly vanish after glitch
A software glitch in ICANN’s TLD Application System was apparently to blame for a number of “disappearing” new generic top-level domain applications today.
At about 4pm UTC today, two Neustar executives tweeted that some applications, among them the company’s own .neustar dot-brand application, had vanished from their TAS accounts.
TAS is the web-based application, presented as a series of questions, which applicants must use to file and pay for their new gTLD applications.
Several other applicants were also believed to be affected.
It took about two hours for ICANN to sort the problem out.
A spokesperson later said: “A display issue occurred in TAS, it has been corrected. All data is now visible & no information was lost.”
It’s the second technical problem to be reported in TAS this week.
On Tuesday, consultant Fairwinds Partners reported that some applicants had problems filling out their TAS profiles, preventing them from completing their applications.
Frankly, I’d be more surprised if this kind of thing didn’t happen.
TAS is brand new custom-built software, and as anyone who’s ever written software will tell you, no amount of testing can substitute for production use when it comes to finding bugs.
.sas could be the first contested dot-brand gTLD
Scandinavian Airlines System Group is to apply to ICANN for a generic top-level domain, .sas, in what could turn out to be the first example of a contested dot-brand.
The company has agreed to explain its thinking during The Top Level, a conference happening in London later this month.
The agenda for the meeting states that SAS will deliver a presentation entitled: “SAS: Why we made the strategic decision to apply”.
Linn Drivdal Mellbye of conference organizer CloudNames, the Norwegian registry services provider, confirmed in a tweet minutes ago that the sought-after gTLD is .sas.
The string “SAS” has multiple meanings.
Indeed, for about three minutes this post originally stated — wrongly — that the applicant giving the presentation was the North Carolina software giant SAS Institute.
If the American SAS also applies for .sas, it may have to fight it out with the airline at an auction.
SAS — the Scandinavian one — becomes the second dot-brand applicant to come out in as many days, following StarHub’s news yesterday.
The company is based in Stockholm and employs about 25,000 people.
.com passed 100 million mark in October
Verisign’s .com registry passed the 100 million domains under management milestone in October, the company’s monthly ICANN registry report revealed today.
The exact number of domains under management in .com on October 31 was 100,540,971, having increased by a net 690,243 registrations over the course of the month.
That’s a pretty big deal, but for some reason Verisign didn’t make any announcements about it at the time.
ICANN registry reports, which all contracted gTLDs must submit, are filed three months after the fact, for competitive reasons.
The number of domains in the .com zone file – which is what most people track to follow the fortunes of TLD operators — differs from the total number in the registry.
Domains which do not have name servers or are in special registry status codes such as Pending Delete do not show up in the zone file.
Today, RegistrarStats reports 100,052,046 domains in the .com zone, while HosterStats’ count yesterday was 100,045,666. The registry is likely to have about 1.5 million more, however.
Startup America obtains s.co and offers free .co domains to entrepreneurs
Startup America, an initiative to encourage entrepreneurship in the US, has relocated to S.co and will offer a free one-year .co domain registration to registered members.
For .CO Internet, the .co registry, this is a pretty sweet marketing coup.
The Startup America Partnership is a private initiative created a year ago in response to White House calls for grassroots economic stimulus.
It’s chaired by former AOL chief Steve Case, and has over a billion dollars in support commitments from tech heavyweights such as IBM, Intel and HP.
Signing up to the program grants entrepreneurs resources such as discounted accounting software and access to workshops. Now, they’ll also get a free .co domain for a year, if they want one.
As part of the deal, Startup America, which was located at startupamericapartnership.org, can now be found at s.co.
While .CO has been commanding prices for single-letter .co domains of, anecdotally, over a million dollars, I’d be surprised if any significant money has changed hands here.
For a Colombian TLD to become part of a flag-waving American initiative such as this, giving it access to its core target customer base… well, let’s just say that even if it gave away s.co for free, which I think it probably did, it would still be a very smart deal from .CO’s end.
Hackers stole data from Verisign, Blacknight
Hackers broke into Verisign’s corporate network and made out with sensitive data, it emerged today.
The attacks happened in 2010 and the company does not believe its all-important domain name infrastructure – which supports .com and several other top-level domains – was compromised.
Reuters broke the news today, but the attack was actually revealed in a Securities and Exchange Commission filing last October. The filing said:
In 2010, the Company faced several successful attacks against its corporate network in which access was gained to information on a small portion of our computers and servers. We have investigated and do not believe these attacks breached the servers that support our Domain Name System (“DNS”) network. Information stored on the compromised corporate systems was exfiltrated.
The filing, which was required under recent SEC disclosure rules, goes on to say that the attacks were “not sufficiently reported to the Company’s management” until September 2011.
It adds that Verisign does not know whether the “exfilitrated” – ie, stolen – data was used by the attackers. The filing does not say what was taken.
Back in 2010, Verisign was still a security company. It did not sell off its SSL business to Symantec until August that year. The filing does not say whether SSL data was breached.
As one of the logical single points of failure on the internet, Verisign is of course the subject of regular attacks, mainly of the performance-degrading distributed denial of service variety.
The bigger worry, as Reuters rather breathlessly notes, is that if hackers could compromise the integrity of the DNS root or .com/.net zones, it could lead to mayhem.
In unrelated news, the domain name registrar Blacknight today revealed that it got hacked on Tuesday.
The attackers may have got away with contact information – including email addresses and telephone numbers – for up to 40,000 customers, the company said.
Financial information such as credit card numbers was not compromised, Blacknight said.
The company has contacted Irish data protection regulators and will also inform the police. Customers are advised to change their passwords.
If you’re a Blacknight customer you’ll also want to be on the lookout for “spear-phishing” attacks in the near future. When the bad guys know your name, it can lead to a more convincing phish.
Recent Comments