Re: domain name stolen and retrieved the whole story (GoDaddy security mechanism has serious loopholes)

It was beyond my expectation that after waiting for a few days, I thought that the mail could start, and the outcome was disappointing. So I decided to complain to ICANN, the address of the complaint page was http://reports.internic.net/cgi/registrars/problem-report.cgi, and the last Transfer Problems was selected, which included the "fraud transfer". I changed the mail to GoDaddy slightly and submitted it to ICANN. On the same day, ICANN forwarded my complaint to GoDaddy for processing, and indicated that they would follow up this matter.

second days GoDaddy revocation Department answered me, but their attitude is still very firm, "we think it is necessary to explain why your claim is rejected, the protection of the account security information is the customer's own responsibility, you may need to recheck our domain name registration agreement, such as If you have any objection to submitting the complaint to the court or the arbitration agency, if you submit a complaint, please forward one copy to us, and we are willing to cooperate with any court or arbitration agency. " GoDaddy still can't admit it. They don't think they have any responsibility. In order to find the relevant responsibility for the domain name registrar, I began to find the relevant policies and terms on the ICANN website, and finally I found a few. I organized the link and related terms, written in the following mail (in English, GoDaddy and ICANN),

respect. Admin:

I have read the domain name registration protocol of GoDaddy several times before, but I can't find the terms about the responsibility of the domain name registrar. Later, I found it on the official website of ICANN.

in the
link in the registration service agreement of ICANN: http://www.icann.org/zh/resources/registrars/raa/ra-agreement-21may09-zh.htm
paragraph: 3.7.7.8
the original:

"registered service provider" should agree to take reasonable precautions to prevent personal data loss and abuse. Unauthorized access or disclosure, alteration or destruction.

link to
in ICANN's "registrant's rights and responsibilities stipulated by the 2009 Registrar Agreement": http://www.icann.org/zh/resources/registrars/raa/registrant-rights-responsibilities
paragraph: "registrar / registered domain name holder agreement"
the original:

registrar It is necessary to give notice on how it intends to use the data provided by the registered domain name holder and who will receive the data. The Registrar must also notify the registered domain name holder of the way to access and update data. In addition, the Registrar must identify the data points and voluntary information that the registered domain name holder must provide. The registered domain name holder must agree to all these data processing clauses.

registrar has agreed to take reasonable precautions to protect registered domain name holders from data.