Re: domain name stolen and retrieved the whole story (GoDaddy security mechanism has serious loopholes)

I was writing the report material on the night of April 19th. At the same time, I contacted a lawyer and asked me to send him an email from GoDaddy. The lawyer said that my situation was difficult to handle, because my account had been stolen for too long, and now it has been rejected by GoDaddy and it is difficult to allow them to accept it. I asked him if he could not get it back through GoDaddy, it would be possible to apply for a domain name arbitration or to go to the United States Court for prosecution. He gave me a domain name after the theft of the case of arbitration failure, and then said that now the domain name theft is impossible by arbitration or litigation, arbitration is only the name of the domain name is snatch and infringe on their own trademark rights, and court prosecution must have a clear defendant, obviously now domain name whois information on the domain name. A person's name and contact information are false. I almost despair of hearing this, so my only hope lies in the lawyer. So I asked the lawyer to help me. I don't know how much the lawyer's fee should be right. I'm afraid to be low, I can't afford to help me, so I wait for him to bid. The lawyer did not mention it. He said he would pay him 120 thousand if he brought it back, of which 20 thousand was the basic lawyer fee, and the 100 thousand paid it back. If you can't get it back, you will only pay 20 thousand of the basic lawyer's service fee, and this 20 thousand is to be paid immediately. Although I think this price is really not low, I can't get so much money in my hand, but I still beat 20 thousand without saying a word. At that time I looked like I had no other hope. Only if he could help me take the domain name back, if he could take it back to borrow money or sell my house.

the lawyer asked me if I had a Chinese and English document, and I showed him a translation of an identity card with a bilingual official seal made by "Ai Qing emperor". He said that this kind of translation was no good. I want to be notarized by the notary office. Let me immediately translate and notarized the identity card and driver's license. At this time, it was 6 o'clock in the early morning of April 20th. It was 4 days after the discovery of the domain name. I did not sleep. I continued to sort out the materials. Then I waited until 8 o'clock in the morning to go to the notary office and finally got the translation before the afternoon. Because April 20th is already Friday, if I didn't get it in April 20th, it would take 3 days to get in touch with GoDaddy (due to the time difference, GoDaddy is going to start Monday's work on Tuesday in Beijing time). On the afternoon of April 20th, I took the report material and went to the Public Security Bureau. I think it was easy to be sent off by them. It said that I should not worry and wait for the notice. On the night of 20

4, the lawyer began to sort out the materials of the lawyer's letter, but it didn't finish until 6:30 in the morning of April 21st. So the lawyer sent an email to the customer service department of GoDaddy and asked how to get the GoDaddy account stolen. The customer service department responded to the need to fill out an application form on their website. The lawyer filled out the form and submitted my ID card and my driver's license translation. I have seen this form before, if the GoDaddy account cannot get in and can not get the password back through the secret mailbox (such as the secret mailbox is stolen, or the mailbox has been replaced), this form can be used to transfer the domain name in the account to other accounts, or to replace the secret mailbox. But there is a premise that there is at least one domain name in the account, and the registrant of the domain name must be his own information. And my GoDaddy account has no domain name, my domain information is not mine, so I can not use this form to appeal back to the domain name. Sure enough, the customer service Department replied on the second night, saying that I am not the current registrant of the domain name, so I can not help me modify it. If I find the domain name stolen before April 8th, I can return the domain name through this form.

I have never been able to figure out why my domain name was stolen, and my mailbox didn't have any relevant mail. And the mail IP since February 22nd has been my own. I suspect that it might be that GoDaddy's mail is automatically classified into spam by the system, and then the spam box is automatically deleted for more than 7 days, or whether the hacker invaded my computer, using my computer to enter my mailbox and delete the mail. In order to confirm this, I immediately call the NetEase customer service and ask them to help me confirm whether or not the sender was support@godaddy.com's mail during the 9 days of April 8th -4 months. NetEase's technical department confirmed that there was no mail from the sender within two days after the inquiry was conducted in the background. I taped the phone so that it could be used as evidence in the future. After

entrust lawyer, I am afraid to add confusion to lawyers, and have never dared to contact GoDaddy again. In order to figure out why my domain name was transferred in March 10th, my domain information was completely changed in April 8th, and GoDaddy did not send any mail to me, I decided to continue to test the GoDaddy, I feel that GoDaddy must have problems. After all, I was born in the process of testing. Looking for BUG has always been my strength. After more than ten hours of testing, I found two problems. The first is that GoDaddy has cancelled what I said before I said "mail validation mechanism", that is, any modification to an account or domain name will send a message. The account or domain name holder must reply to the mail or click the link in the mail to make the modification effective, but now it is changed to "mail notification mechanism", that is, the account. The information of the family or domain name is changed immediately, and then send an email to the account or the owner of the domain name, informing that the information has been modified, and if there is any objection, the complaint can be revoked within 15 days. It's a pits! In the past, a good verification mechanism was not used. Even if people who do not know English, as long as they keep the mailbox, they need not worry about the theft of domain names. If this is the only problem, then there will be a notification email after all. But GoDaddy still has a big BUG, which makes use of this BUG not to send the message, and I didn't receive mail in March 10th and April 8th. It was this BUG, and then I will elaborate on the process of testing this BUG. In a word, I found the new continent, my domain name was stolen GoDaddy. The blame for it. Because my mailbox opened the handmail function, received any mail I will immediately notify the phone message, in March 10th 5 domain names have been transferred simultaneously, 5 mail sent to me, I can not know that the domain name was stolen, if that time, I immediately submitted a form on the site and back to the domain name. After finding this big BUG, I immediately informed the lawyer and asked the lawyer if he would like to mention the safety mechanism of GoDaddy in his lawyer's letter.