Re: domain name stolen and retrieved the whole story (GoDaddy security mechanism has serious loopholes)
(1) found that after the domain name is stolen, do not immediately contact the Registrar, because at this time the general people will be more anxious, nothing to know clearly to contact the Registrar, only that my domain name has been stolen, the registrar will generally not accept, once the Registrar initially refused to refuse, the back of the reply may persist not to accept That's why. I think I've been eating this time.
(2) after finding the domain name stolen, the first thing to do is to understand the detailed process of hacking the domain name. If the mailbox is stolen, it should be taken back to the mailbox first.
(3) if it is the domain name management account stolen should take the account first, can take back the best by secret insurance, otherwise contact the Registrar, only said the account was stolen, first do not say the domain name, because it is easier to take back the account for them to accept. I sent the first mail to say that my domain name and account were stolen. Please ask them to help me. Of course they will refuse me. That's my lesson.
(4) collects and collects related evidence, such as domain name registration mail, renewal record, domain name history whois record, website program and historical page screenshot and so on. If it is a foreign registrar, it should also immediately prepare passport and ID card translation.
(5) must write the whole process of domain name theft in detail. Then a lawyer is sent to the Registrar in the form of a very formal lawyer, accompanied by relevant evidence and documents. If you don't accept a lawyer's letter, you can try to complain to ICANN and follow up by ICANN. Things may turn around.
(6) if the domain name has been transferred from the original registrar to the new registrar, it should also contact the original registrar first, and do not contact the new registrar. As long as the original registrar finds that your domain name is illegal, they will negotiate with the new registrar.
(7) must be better at contacting the Registrar, whether it is mail or telephone, preferably in a pleading tone. The registrar has no reply for one or two days. Do not worry. If you send an email every day to ask questions, you may not be able to talk to you again after annoying them.
(8) if it is a domestic registrar, you can go to the public security bureau to report the case, and after filing the case, the public security bureau can ask the Registrar to cooperate with the investigation, such as the IP of the inquiry operation. If the officer in charge of the case is unwilling to accept the case, he will change several police officers or even report to other public security bureaus.
(9) if other methods can not work, and finally can consider the domain name arbitration, as long as the complaint is well written, well organized, and the evidence is complete, the victory of arbitration is also some.
(10) no matter how hard it is, do not give up easily. We must have firm belief and firmly believe that we will get it back in the future. We must imagine more about the situation when the domain name is brought back. In fact, when I had not returned the domain name, I had already begun to conceive of this article, because I kept this belief in my heart. Even in the most desperate time, I often imagined that I would take back the domain name.
I also want to call on the vast majority of stationmaster and rice farmers to go to the ICANN website and submit suggestions (http://www.icann.org/en/contact), suggesting that they establish a perfect domain name transfer policy. Why bicycles are easy to be stolen and cars are not so easy, because bicycles do not need real name purchase, nor do they have any transfer procedures. And each car has a unique number of engines, strict transfer procedures, and must show the identity of the two parties, even if the stolen is also easy to recover, and the house is not to say. Domain name is easy to be stolen because there is no transfer procedures, only one password can be transferred at will, convenient is convenient, but also very unsafe. There is no law for the protection of domain names in the world, and if the legislation does not know when to wait, we can only give ICANN advice, which is relatively easier to achieve. If the domain name policy is stipulated, the two parties must sign a formal contract and keep each other's identity documents and contact ways, so that the domain name will be much safer. Although the process of buying and selling domain names is more complex, no one wants to buy a domain name today. It will be appealed back tomorrow. No one wants to do the domain name for a few years. If a domain name transfer policy is not released one day, domain name theft will not stop one day.
thanks to everyone who has read this article.