How can I get a stolen domain name back?

[CLKeenan]

I had a domain registered with GoDaddy. Someone apparently was able to log into my account, unlock the domain name and transfered it to Enom without my knowledge.

What are my options here? Has anyone successfully gotten a stolen domain name back?

This is a giant FML right about now so any help would be greatly appreciated.

On a side note; the fucker didn't use privacy protection on his registration so I have all his details now.

Admin ID:GODA-210533703
Admin Name:Hieu Minh Ngo
Admin Street1:33/3 Le Van Sy, P.13, Q. Phu Nhuan
Admin Street2:
Admin Street3:
Admin City:Ho Chi Minh
Admin State/Province:Ho Chi Minh
Admin Postal Code:70000
Admin Country:VN
Admin Phone:+84.972666627
Admin Phone Ext.:
Admin FAX:+84.972666627
Admin FAX Ext.:

 

[Rage9]

I'd start by email/calling GoDaddy, probably a pretty worthless move being GoDaddy in all but you never know.

 

[keeper33]

Ricdes had this happen to him, coincidentally with GoDaddy as well, here's the thread:

http://www.wickedfire.com/shooting-shit/49921-so-kid-stole-my-best-domain.html\

IIRC he was able to retrieve the stolen domain

 

[ooomph]

whoah that's heavy !!

 

[UnripeArbiter]

That really sucks man. FYL.

Looks like that address is a Vietnamese hotel or something. Wish I could offer advice.

 

[Sharksfan]

That sucks dude.

This is a really good argument FOR splitting up your registrar and hosting.

 

[stussy5555]

Damn, Dr. Ngo stole your name

 

[jryan21]

If you see they are using it to make phishing sites, start raising hell with godaddy and enom and tell them you are recording all your phone conversations with them to pass along to the feds. You might not get it back right away, but at least they should kill the account.

 

[DavidOgden]

Last week someone hacked into my Godaddy account and changed by nameservers to a site in Italy they also changed my password so Godaddy staff reset my password and I had to reset my nameservers to my original hosting company.

Still do not know how they got into my account, the first I new was a message from godaddy alerting me to a change to by website hosting.

 

[matt3]

I have always been instructed to never enter in passwords for GD... use comp gen max chars, copy & paste.

 

[CLKeenan]

That sucks dude.

This is a really good argument FOR splitting up your registrar and hosting.

I have my website hosted on a datacenter completely different from GoDaddy so that has nothing to do with it

 

[Rage9]

I have my website hosted on a datacenter completely different from GoDaddy so that has nothing to do with it

Your forgetting about some kind of virus or keylogger or whatnot getting your password from a computer you would log int godaddy from.

 

[zimok]

I have always been instructed to never enter in passwords for GD... use comp gen max chars, copy & paste.

Not if keyloggers are used, copy/paste just makes it easier, the hacker doesn't even need to figure out typos.

Password Tip: When entering your password on an untrusted PC -> Several clicks in & outside the password field + characters entered while out of field creates a bit of a challenge (for the snoop).

I suppose an argument could be made that you're never truly safe, and one simply chooses what to be paranoid about based on probability & fear factor.

 

[tainted]

Not necessarily a keylogger. Could be a well placed sniffer ^^

 

[Fatbat]

Don't waste time talking to us about it, get on the horn to GoDaddy and Enom. The sooner you take action the better your chances at getting your name back.

Do you have a GoDaddy account exec? If so, they would be the one to talk to about this. Otherwise there are explicit instructions in Ricdes' thread.

 

[Jondoe0069]

Time to change my Godaddy password. I haven't changed it in 5 years.

--Man, it took me 8 minutes to figure out where to go to change it. They need to make these things more prominent so people will consider doing it more often.

On the keylogger front, another possibility would be if you're using unencrypted wireless AND logging in on the Godaddy homepage. It's not https. The log in form may be secure, but I don't get the some items are secure message. I don't know how far away you are from Vietnam though or if the whois is incorrect, but anyone who stole it that way would be near you.

 

[Fatbat]

--Man, it took me 8 minutes to figure out where to go to change it. They need to make these things more prominent so people will consider doing it more often.

Yeah, the text link at the top of the page right next to your name and the "account manager" link that says "change password" is so hard to see.

Or perhaps the text link right in the middle of the page, right under your name, that says "update security settings" eluded you too?

There are a few other ways to get there too that aren't as clear.

8 minutes? You really are slow Homer.

 

[CLKeenan]

Does anyone have a GoDaddy exec I can talk to directly?

 

[Kiwigirl]

It sounds to me like purchasing domains from GoDaddy is not so wise as obviously their firewall is not very secure. Maybe invest in transferring your domain names to such companies like Register Domain Names with moniker.com
That's my 2 cents.

 

[CLKeenan]

Thanks to the people who PM'd me their contacts.

I posted a comment to Bob Parson's blog (Go Daddy's CEO) and he had one of his assistants call me up and tell me that Bob asked her to make sure that the case was being investigated fully so that was good... just waiting to hear enom's response back to Godaddy's request to transfer the domain name back..... wish me luck!