Domain name hijacking
Domain hijacking is the act of changing a domain name’s registration without the permission of the person who originally registered it. This is a problem that has become more prevalent as the Internet has grown in popularity. Many businesses have had to deal with this issue in recent years.
What impact can domain hijacking have on a business?
The act of domain hijacking has the potential to devastate the company that originally held the domain name. This is especially true if the original company conducted their business through the email accounts associated with the domain or derived commercial income from a website that was hosted at the domain. In addition to this, the person who hijacked the domain can then start to use the domain name to do phishing. This is an illegal activity where criminals will create a fake website that looks exactly like a website that already exists. Users are then tricked into thinking that they are on the real website. When the users enter their passwords and other log-in information, they are instantly obtained by the criminal. They can then use this personal information to steal money and commit various crimes.
There are several ways by which domain hijacking can be accomplished. It is usually done through social engineering or exploiting a vulnerability in the domain name registration system. Impersonating the original owner of the domain by using personal information the hijacker has acquired is the most common method that is used to hijack a domain. They will then use this personal information in an attempt to trick the domain registrar into transferring the domain to a different registrar and/or modify the registration information. This is a form of identity theft. If the hijacker successfully accomplishes this, he will have complete control over the domain. He can then sell it to a third party or use it for his own criminal activities.
Once a hijacking has been discovered, the responses to it tend to vary. The registrar is sometimes able to return the registration to its original state. However, if the domain name was transferred to a different registrar, this can prove to be difficult. This is especially true if the registrar is in a different country. There have been many cases where the original owner of the domain has not been able to regain control over a domain that was hijacked.
How it can be prevented
The Internet Corporation for Assigned Names and Numbers (ICANN) requires that there must be a waiting period of 60 days between the time that the registration information is changed and when it is transferred to a different registrar. By doing this, the process of hijacking a domain becomes a tougher task. This is because there is a good possibility that the original registrant will notice the problem during the 60-day window and alert the authorities about the issue. A domain that has been transferred is also a lot harder to reclaim. This is another reason that this method reduces the risk of domain hijacking.
It is also important to keep your email address safe. Change your password often and setup additional security features such as 2 step verification from Google. Another good thing is domain name privacy tool, this will make harder to obtain your personal and contact information. You can also consider using Domain Name Protection plan to decrease chances that you would loose your domain name. And remember that none of those advices would work if you let criminals to access domain name on your own, so be vigilant and do not tell you personal information to anyone you meet online.