George Kirikos has uncovered a lawsuit filed on the domain name CostaRica.com. The domain allegedly has been stolen.
Now that I have had a chance to look at the Pacer file, it looks like the plaintiff is stating the domain was stolen in 2015 or early 2016.
The complaint alleges that the hacker using a stolen username and password successfully “hacked” the MelbourneIT registration account of the Plaintiffs and transferred the Disputed Domain to its current registrar at Name.com.
Upon information and belief, this hacker accessed Plaintiffs’ registration account, changed the administrative settings to forward Plaintiffs’ emails and mail to addresses not controlled by the Plaintiffs, and initiated a transfer of the Disputed Domain.
This hacker apparently changed the mailing address to an address in Menlo Park in California where he could receive mail then subsequently put a privacy service on the registration of the Disputed Domain to hide the fact the hacker had converted it.
The hacker did not redirect the domain so the website continued to function properly. This meant the plaintiff did not notice the domain had been stolen. The plaintiff contacted Name.com who told them they could do nothing for them.
Lawsuit filed regarding allegedly stolen https://t.co/Y1LqYqCEe9 domain name https://t.co/AH1hcYUUqD
— George Kirikos (@GeorgeKirikos) November 27, 2016
Andrea Paladini says
As far as I can see, now Whois shows an alleged guy from Nasr City, which is a district of Cairo, with a postcode 11511, mobile number is probably Vodafone Egypt (+20 10 +8 numbers), but I’ve not tested it.
Domain Name: COSTARICA.COM
Registrar: NAME.COM, INC.
Sponsoring Registrar IANA ID: 625
Whois Server: whois.name.com
Referral URL: http://www.name.com
Name Server: NS2.SECURE.NET
Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
Updated Date: 25-nov-2016
Creation Date: 10-mar-1995
Expiration Date: 11-mar-2017
>>> Last update of whois database: Sun, 27 Nov 2016 22:17:11 GMT <<>> Last update of WHOIS database: 2016-11-27T15:17:20-07:00 <<<
Andrea Paladini says
A portion of Whois was missing, here we go.
Admin Name: Amal zakero
Admin Organization: zakeroco
Admin Street: nasr city
Admin City: ciaro
Admin State/Province: None (International)
Admin Postal Code: 11511
Admin Country: EG
Admin Phone: +20.1034054549
Admin Email: Alejandropicado@outlook.com
Registry Tech ID:
Tech Name: Amal zakero
Tech Organization: zakeroco
Tech Street: nasr city
Tech City: ciaro
Tech State/Province: None (International)
Tech Postal Code: 11511
Tech Country: EG
Tech Phone: +20.1034054549
Tech Email: Alejandropicado@outlook.com
>>> Last update of WHOIS database: 2016-11-27T15:17:20-07:00 <<<
brian says
It seems odd that a US based registrar was the transfer in registrar vs. some kind of “laws” in china or Russia that would uphold the alleged fraud
eric says
Silly thief.