Domain Registrar Account Phishing: Who is at Responsible?

I would imagine that just about every domain name owner has received an email that purports to be a domain registrar. Typically, these phishing emails request that the recipient click a link within the email and then provide private account information, which would give the sender access to the domain owner’s registrar account. Some of these emails look pretty close to actual registrar emails, and they can be confusing.

I’ve shared some probably examples of phishing emails I received or were submitted to me. For instance, here is an example of a likely GoDaddy phishing email and here is an example of a likely phishing email. I also discussed why domain registrar phishing emails are bad for everyone who buys and sells domain names. Put simply, domain phishing is harmful to the business of domain investing.

The question I have today is who is responsible  when a customer’s domain registrar account is hacked and their domain names are stolen, and who should be responsible for ensuring successful recovery of a domain name after a domain hijacking?

With phishing, there is quite a bit of blame placed on the domain owner who likely caused this to happen by accidentally providing account information to an unauthorized party. Yes, it was an unintentional error that may have caused the theft, but the thief probably wouldn’t have been able to steal domain names without having that information. It can be very expensive for a domain owner to recover a domain name using legal channels, and it can get complicated if the current registrant is not the thief (ie the domain name was resold).

On the other hand, many registrants may not be aware that domain name theft is a major problem, and they may not think about account security in the same way they would for their bank or financial institution. There  are  marketing emails, ICANN update emails, expiration emails, and other types of emails sent by domain registrars, so these emails  can be confusing for recipients.

When it comes to domain name theft, do you think the domain owner who may have been phished should bear the costs of recovering a domain name, or should the domain registrar be responsible for verifying claims and recovering domain names? Should ICANN play any role in assisting with a domain hijacking? I recently read that the ICA is working on something, and I am curious what your thoughts are on the processes and policies for recovering stolen domain names.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn

Leave a Reply

Recent Posts UDRP Decision is Upsetting

Last night, I saw that WIPO had posted an update regarding the UDRP. is a domain name registered in 1996, and I...

CEO of Shares Domain Name Acquisition Learnings

Jordan Fried is the owner of some exceptional domain names. A few of the domain names he owns include,, and This...

Taking a Blog Break

I have been writing articles on my blog since 2007. I have been fortunate to have the advertising support of many domain industry companies...

Some Thoughts About 2023

As the year winds down, I have been thinking about what to expect for the upcoming year. I am hopeful that it will be...

How I Am Preparing for the New Year

Less than a week remains in 2022. This is generally a quiet week in terms of domain name sales, so I tend to spend...