INFO domain - Identity Thefts?

Hope this is the right forum and its not been brought up in another thread.

That aside, I was wondering if anyone here has an info domain registered by their registrar using their private information (whois) without their permission?

I have a domain (magdeline.com) with namecheap and (magdeline.info) has been registered using my private information without my permission by eNom. I found this when I ran a a http://whois.cc/domainame.info

I'm very upset about it. They should have seek my permission first. I have since complain to namecheap and purchased a whoisguard subscription to protect my whois information.

I was wondering if anyone here is affected by this 'promotion' by Enom.

as far as i know, it's standard to be registered in a whois-db, and most registars will charge extra to make an 'anonimus' registration. (so a promotion would be to not publish your details) Wether they did it without your permission --> are you absolutely sure you didn't pass any screen where you agreed on some terms that included publishing whois-data?

If you are worried about having your personal details published, then just enter some bogus contactinfo. (I usually live in "Cave 16, Tasmania" or so). The whois db is simply to allow others to cotact you, so if you don't want that, just enter 'check@my.site.to.email.me' or whatever, but don't pay extra to have your contact-data hidden in a contact-data-db.

yup. very very sure that I didn't give permission. The company who registered the INFO domain isn't even my domain registrar. However, my domain registrar is a reseller of eNom (the company).

There's an article about this mass registration of INFO domain. Article (http://news.netcraft.com/archives/2004/10/08/sipence_grabs_1_million_info_domains_sparking_controversy.html)

I asked around and I'm not the only one who was shocked to find an INFO domain registered with my details and have no knowledge of it. I have since purchased a whoisguard service that 'unlist' my whois information. However, even with this service, would not have prevented eNom from registering another info domain with my details. I'm assuming that since my domain registrar is a reseller of eNom, my personal information are still send to eNom to register the domain.

after reading that article, i understand what you mean. You had the .com and eNom has now simply (without your knowledge or consent) registerd the .info domain with you as a registrant and your details in the whois-db.

Very sneaky indeed, specially because you can register .info's for free at verious companys. I does indeed sound like a privacy-breach to me + it's simply absurd that they register a domain in your name without your knowledge.

But if you are the registrant, then you are the owner of the domain, so then you should be able to alter your registrant-details, right?

Is it not fraud, i.e. Fraudulent inpersonation of a person to gain goods. E.g. a criminal using a stolen card etc.


scroots

its a bit of gray area since the registrant is officially you with your details as the owner of the domain. Alot of people were screaming about identity thefts and some threatened lawsuits. However, I have not heard anyone actually sue the company for it. *shrugs*

According to a topic I saw on WHT Forum (http://www.webhostingtalk.com/showthread.php?s=&threadid=326763&perpage=15&pagenumber=13), eNom is going to release all domains to the owners within some weeks. I haven't got mine yet but I'll be sure to delete it the moment I get it. The notice does make me feel better but I'm still quite upset they can get away with this and the fact that there's no promise this won't happen again.

This sounds like a customer service gone wrong... and the thing that has gone wrong is their not asking you before doing it, not that they in fact did it.

As I understand it, they have registred a domain in your name (effectively making you the owner, not them) without charging you anything (you are already the owner - I don't think they could legally charge you for that registration, nor can they cancel it without your consent), and probably without being charged for getting them in the first place. In short, they have gifted you a domain, for the duration of the registration.

Whether their use of your registration data is illegal or not depends on the terms of your original agreement with them, but as you have already given your consent for adding this data to the whois database for your original domain, I think they might actually be in the clear when it comes to this.

Hi Everyone,

Someoone used my private information to register a .info domain in my name and address. I own a .com domain by the same name.

Can someone tell me how i can catch hold of whoever is responsible for this?

Thanks
Sanjay

Hi Everyone,

Someoone used my private information to register a .info domain in my name and address. I own a .com domain by the same name.

Can someone tell me how i can catch hold of whoever is responsible for this?

Thanks
Sanjay

Hi Sanjay (and everyone else)...

I have a .com and a .org domain which sipience (enom) registered the .info domains in using my name as the owner. They were running a search engine on them which only showed sponsored links... so basically they were using my name to earn themselves money.

Not Happy!!!!

So.... after checking around, I found that people who used the ICANN dispute resolution process would end up having the .info domain registration suddenly changed showing enom as the owner. Not wanting this to happen, I went to my current registrar and effectively "stole" the domain from them. They listed me as the owner... so I decided to own it. It cost $20US... but knowing that I've stuck it to them makes it priceless.

For more info... check out www.farrowgalleries.info

I have also had eNom, through reseller CheapDomainNames.com (CDN), take my info and set up two unauthorized domains.... through another reseller: Sipence.com.

There are some steps you can take without cost... see 1 2 3 below.

There is fraud, misrepresentation, trademark infringment, and intent to profit:

I went to the unauthorized "info" sites they had set up in my name. They used a FRAME w/ javascript to insert my web site (.com) on their server. The URL shows the .info so it appears as their content... it is not theirs ... It's Mine.

Some things to look for:
The email I received from CDN for "renewal" of the unauthorized .info sites came through eNom's servers. This is intent to profit.

When I renewed my official sites in August of 2005, the .info sites were not listed on my account with CDN -- even though Sipence has registered them in 2004. When I went to transfer my official domains, there were the two .info sites.... I did not change them in any way, shape or form.

I had also updated my contact data when I renewed my official sites... if the .info domains had been there in Aug 2005 -- the contact data would have been updated at the same time.... the .info contact data is OLD data. So the .info domains were not there until after renewal of my official sites.

1. File report online with the FTC (Federal Trade Commission). (2000 characters max -- that includes dashes, periods, spaces)

2. File a report online with the BBB if you aren't afraid of letting eNom know you filed. Doesn't seen to have character limits. Also, you have a chance for rebuttal if eNom replies. I don't know if eNom would see the rebuttal.

3. File a report online at ICANN... NOT the ones that cost money. There are two differenct online forms on the ICANN site for complaints about a registrar and for fraud.

Using a word processor before going to the sites is helpful.

Too bad we can't have some kind of class action for this... My email was almost word for word per this suit and citation involving an eNom reseller:

SEE: http://www.ftc.gov/opa/2003/12/domainreg.htm

CITATION: Civil Action No. 03 CV 10075 Federal Trade Commission, Plaintiff VS Domain Registry of America, Inc., Defendant. Complaint for Permanent Injunction and Equitable Relief.

Also, view the SOURCE on the .info site/s. You'll see that they are putting your site in their frame on their server. That is misrepresentation and fraud... if you did not "renew" the unauthorized sites.

The source code probably contains -- as of this date:

/?a8734haka8dr781346=true

Put quotes around it and do a google -- 20,000 plus? Whoa! That's a lot of intent to profit.

If you "renewed" then that is still profiting from their previously unauthorized use.

BTW, I am not a lawyer... but I am doing research into the best way to approach one with this. Also, looking into an Ethical congressional leader who may be able to help.

Also, view the SOURCE on the .info site/s. You'll see that they are putting your site in their frame on their server. That is misrepresentation and fraud... if you did not "renew" the unauthorized sites.

The source code probably contains -- as of this date:

/?a8734haka8dr781346=true

Put quotes around it and do a google -- 20,000 plus? Whoa! That's a lot of intent to profit.

If you "renewed" then that is still profiting from their previously unauthorized use.

BTW, I am not a lawyer... but I am doing research into the best way to approach one with this. Also, looking into an Ethical congressional leader who may be able to help.

How exactly are they intending to profit? If anything they are costing themselves money. They have registered the domain on your behalf, at no cost to yourself and are basically giving you a free domain.
If it is registered in your name then you own it and can do whatever you like with it.
Basically your registrar is making sure that you get the .info for your domain before anyone else. If you dont want it then you dont have to renew it.

Yes, eNom does pay to register.... they get a special deal, so it's only an initial out-of-pocket - "chump change" - they want a bunch of "chumps" to "renew."

How can they profit? Here's a real example of how:

I registered "My Domain Dot Com" in 2003 via Cheap Domain Names.com (CDN).

CDN is an eNom reseller.

I renewed "My Domain Dot Com" through CDN in 2004 & 2005. These domains reside on my own server.

Meanwhile, in 2004, another eNom reseller -- Sipence -- registered "Domain Dot Info" using My Contact Information. I did Not know about this. Nor did I authorize them to do so.

CheapDomainNames sent me an email about three weeks after I had renewed "My Domain Dot Com." The email was as follows (I altered my personal data to post it here) -- stay with me here -- there is a point:

"""
Dear "Domain Dot Info" holder:

The following domain names and services in your account 'My Dot Com' are scheduled to expire soon and will be discontinued:

Service Expire Date Description
------------------------------------------------------
Registration 09-00-2005 "Domain Dot Info"

Please be aware that if your domain name or service is discontinued, any email, website, or other services that were associated with it may be affected.

You can extend your domains and services by doing the following:

1. Go to http :// www. cheap domain names.com.
2. Login to your account.
3. Go to the domains and services you wish to extend.
4. Go to the auto-renew settings for the domains and services.
5. Select the appropriate option to have the domains and services automatically renew.
6. Save your changes.

After setting your domains and services to renew, we will process the renewal order and attempt to extend the domains and services for you.

If you have any questions, please reply to this e-mail. Thank you for using our domain name services.

Sincerely,
CheapDomainNames.com
"""

There was NOT a "Domain Dot Info" listed in 'My Dot Com' account when I renewed "My Domain Dot Com" in August 2004 or 2005.

They profit when people go to "renew" a domain they never agreed to. I was told that I had received an email in 2004, offering me a free "Domain Dot Info" for a year. CheapDomainNames did not send me an email 2004. IF, Sipence did, I considered it spam and probably deleted it. I did Not respond to any offers of this sort.

I did some researching, found out that eNom, Inc. -- the registrar officially licensed by ICANN -- owns, "contracts," the resellers.

eNom intends to profit by sending out "renewals" to all persons they set up with "Dot Info" domains -- and some will/have responded by "renewing" WHAT THEY DID NOT SIGN UP FOR. If eNom -- & resellers -- have registered 20,000 plus domains at $15.00 per.

Sorry for screaming...

There's more.

The email sent to me from CDN came through eNoms servers.

My intellectual property is being misrepresented via framing and Javascript. If I go to the "Domain Dot Info" they set up, "My Domain Dot Com" is there in all it's glory, my hard work, sitting on Their Server in a frame. The URL in the address bar is "Domain Dot Info" not "My Domain Dot Com." By Law, that is Misrepresentation, Fraud. I am the only one legally able to use - and authorize use, of Derivative Content -- because it's mine.

If I had forms set up on "My Domain Dot Com" -- for my customer's to enter their data -- It Is Possible for eNom/resellers to harvest the data being sent from Their Server.

eNom/Resellers can insist all they want that I authorized them to do it, but I did Not.

Domain Name Registry of America aka eNom violated the law and were held legally liable by the FTC. If you follow the links I provided in my other posts, and read the information, you will see that the email sent to me by CheapDomainNames copies the DNR wording format.

http://www.ftc.gov/opa/2003/12/domainreg.htm

What eNom is doing is illegal, against the law. If no one complains, nothing gets fixed.

Also,

Unauthorized use of My Contact Information is Identity Fraud on the part of eNom/resellers.

I DID NOT CONSENT to the "free" domain. Do not want it, did not authorize it.

They control the scripting that misrepresents my site on their server... I have no way to remove this scripting. They set it up, they should remove it.

That an authorized ICANN registrar, eNom, can get away with this is beyond me.

For every person that is pissed off about this theres probably at least 1 who is happy. Do you know how much money some companies pay to 'watch' domains that they want so they can grab them the instant they become available?
In registering the .info on your behalf they have prevented anyone else from getting that domain before you. If you dont want it, then dont renew it. It will expire and the problem will solve itself.

You say you didnt agree to this but can you in all honesty say you read (and preferably kept a copy of) every single word of all t&c and agreements that you e-signed when you registered your domain?
Just because you werent aware of it doesnt necessarily mean you didnt agree to it.

As for them being able to harvest form data, well so can your host (and if you host with the same place you registered your domain with then the point is moot.)

TBH I really doubt they are breaking the law, if they were then they wouldnt be so open about it - the domains were registered a year ago, there are articles and news stories about it, its controversial but if it was law breaking then they wouldnt announce it.

If they had broken the law someone would have done something 12 months ago when they announced that they had done it.

"Do you know how much money some companies pay to 'watch' domains that they want so they can grab them the instant they become available?"

That is not the issue.


"If you dont want it, then dont renew it. It will expire and the problem will solve itself. "

Problem not solved. It is expired, but Dot Info alive and well with my .com domain content showing. (Whois search still showing me as the owner of Dot Info, but I realize it takes a little time to update data.)

"all honesty say you read (and preferably kept a copy of) every single word of all t&c and agreements that you e-signed when you registered your domain"

Sipence is not my registrar. Sipence was not in the agreement. Sipence registered the offending domain. I e-signed an agreement with CheapDomainNames. There is no authorization from me.

"Just because you werent aware of it doesnt necessarily mean you didnt agree to it."

By US Federal Law, and according to ICANN's rules: It must be authorized by me. Read it: http://www.ftc.gov/opa/2003/12/domainreg.htm

Again, by US law, Sipence needed my express permission to register a domain in my name. They did not have permission.

"for them being able to harvest form data, well so can your host"

My form data should remain uncompromised on my server, not theirs. No, I don't need, or have, someone else to host my web site.

"I really doubt they are breaking the law"

This is the scam: http://www.ftc.gov/opa/2003/12/domainreg.htm

The law was broken when Sipence set up the domain, using my contact data, without my consent.

Your Post

If a derivative of your -- Whole site -- was FRAMED on someone else's server with java script running it .... and you have no control over that, no way to get rid of it ... would you be happy?

All in all, the whole thing smacks of "you do what we want you to do, or we'll show you we are in contol by derivatively using your domain any way we want."

They want me and others to pay for something we did not agree to buy. In a sense, that's extortion.

Sipence is not my registrar. Sipence was not in the agreement. Sipence registered the offending domain. I e-signed an agreement with CheapDomainNames. There is no authorization from me.
You didnt read the T&C then. Maybe this will refresh your memory,
http://www.cheapdomainnames.com/terms/agreement.asp
sipence are a listed registrar in cheapdomainnames' agreement as are

THE FOLLOWING REGISTRARS ARE REFERRENCED IN THIS DOCUMENT:

eNombre Corporation
eNom, Incorporated
Fushi Tarazu, Incorporated
Internet Internal Affairs Corporation
SicherRegister, Incorporated
Sipence, Inc.

A year ago there was a promotion offered to registrars to get free .info domains. eNom (through their reseller sipence) bought 1 million of these domains and offered them free to their customers. Your resller may or may not have chosen to extend the offer to you.
eNom customers were all informed by email of the registration (an email you admit you may have junked) and were able to claim or release the domains from the 'promotions' tab on their account. If you released the domain at the time then the details would be changed to eNom.

If you dont want the name it will expire or be reregistered be eNom (or sipence) under their name. If after that time the domain is still 'hosting' your site then I'm sure an email asking them to remove it will sort out the issue. Most likely the domain will just be allowed to lapse as eNom will have no use for an unwanted domain and it will cost them money to keep it alive.

http://www.ftc.gov/opa/2003/12/domainreg.htm is nothing to do with this issue whatsoever. This case was about an eNom reseller sending fake renewal notices that mislead customers into registering their domains with DROA.

That would be like if I sent you an email and faked it to look like it was from your registrar saying your domain was about to expire... click here to renew it and then linked to my eNom reseller account. Which is not what is happening here.

This is like there being a really good deal on in England for something I think you might like, but I cant get in touch with you in time so I think I'll buy it anyway and if you dont want it, no big deal, if you do then you can have it free for a year then if you still want it, then thats up to you.

eNom have tried to do a good thing for their customers, they have prevented anyone registering your .info and given it to you (or your reseller) for free.
The renewal notice you have is not decietful or misleading, you are the listed owned of the domain and it is about to expire.

If you want the frames page taken down then 1) try asking, 2) get the name servers changed to point to your host until the domain expires. You are the legal owner of the domain, you have complete control over that domain.

As I said before, if there was a legal issue here it would have been address 12 months ago when it happened.
If anyone, your issue should be with your reseller if they failed to inform you of the initial domain registration and if they are hosting your website without your knowledge, not Sipence.

As for how I would feel if this happened to me, I would be happy, its a free domain that I can choose to take control of or let slip. Since I dont know what javascript you're talking about and you've provided no link to the site then I cant say whether or not its something that would bother me but I googled that text you spoke of and all the sites were blank for me.

The issue is:

Can any registrar and/or service provider/reseller set up a domain, using your contact information, without your authorization?The answer is a resounding NO. Legal precedent has been set in United States District Court in New York: FTC VS Domain Name Registry.

The answer is NO. You are in the UK, so your answer may be different. Mine is still NO.

Can any registrar and/or service provider/reseller use java script and framing to derivatively display any web site belonging to their customer, without customer authorization to do so?

The answer is NO. It is intellectual property infringement, misrepresentation, and fraud. In the United States there are many precedents and laws on the books against unauthorized use.

I signed -- AUTHORIZED - an agreement for a domain name of my own choosing, not theirs.

Nancy, please re-read all the posts. Re-pointing the servers??? Read. You may not understand the issues throughly because it has not happened to you.

To all the persons in this thread that are going through the same thing:

I hope my posts may have shed some light on what others are going through also. I was glad to see that I was not the only one with this problem.

If you are experiencing the same things I described here, file a complaint.

Namaste!

Havent read all the posts here so this may be way off topic, but check this (http://www.icann.org/registrars/wdrp.htm) out. I remember hackthissite.org and many similar sites were contacted by icann about it, and there was a long discussion about it; obviously someone running a site like that wouldnt want to give out accurate whois info..