Domain Theft via Hosted Mail
Update:
It turns out my wife, with a fooworks.com address, triggered the admin password email. LOL
—-
Here’s a scary scenario I just avoided, but may still be subjected to. The “flaw”, NOW (original flaw fixed) however, is said “Hacker” asking google/gmail for an admin password reset which you’d have to approve. Not technically a “hack”, but it opens the door to human error.
“A “cracker”* used a deficiency in Gmail to steal a domain name this month. The theft was of DavidAirey.com, a popular graphic designer’s personal site that attracts a couple thousand unique visitors a day.
So how did it happen, and what can you do to protect yourself? Furthermore, how could a popular domainer site lead to even more lost domains?
First, here’s how it happened in a nutshell:
1. DavidAirey.com was registered through a webhost, ICDSoft.
2. The cracker contacted the webhost through a support ticket asking to unlock the domain and send the EPP transfer code.
3. The cracker compromised David Airey’s Gmail account to forward any domain transfer requests to his own email account.
4. The cracker transfered the domain to a GoDaddy account without Airey’s knowledge.”