This is a post from 03/08/2008 by Bjorn Kassoe Andersen, founder, owner and leader of Direction, a management and communications consulting company based in Denmark, which had its domain, direction.com, stolen back in 2006.
It looks as if social engineering – that is: tricking people – is the easiest way for someone to steal a domain name. From the owner of sweet.com I received an email sent from firstname.lastname@example.org in which the sender pretends to be the legitimate owner of the domain and tries to trick the ISP to set up a forward in order to gain control over the domain.
I assume this was the method used also when our domain – direction.com – was stolen in late 2006 by someone operating also from email@example.com (and firstname.lastname@example.org). Here is how the email reads:
Thanks for nice services and support,
I’m tried many time to set mail forwarding for my email account, but page will not load after click on Submit button for set mail forwarding!!!
Tried to set: xxx@SWEET.COM forward to email@example.com So, Please check it and try to set this mail forwarding….and send me note when you have done it.
[the name of the administrator of sweet.com]
Preventdomaintheft.com was formerly owned by Bjorn Kassoe Andersen. In October, 2011, Mr. Andersen sold the domain and website to Traverse Legal, a law firm specializing in internet law and assisting clients on domain theft issues.