Should Offer 2FA

Yesterday morning, I wrote about the need for GoDaddy to add 2 factor authentication (2FA) at Afternic to enhance account security. While we are discussing account security, I also think it is important for to offer its customers a form of 2FA for account logins.

The potential security issues at and Afternic are different, but the ramifications are serious on both platforms. If someone would gain access to my account via the password, they would have access to all of my domain name sales and acquisitions that have been transacted via Similarly, if someone gains access to a domain broker’s account, they would have access to client domain name sales data.

If someone gained access to an customer account, they could see current bank account information and could also change bank account information. I do not believe this is a major threat, though, for two reasons. For one,  the account holder would be notified of the update via email and would be able to contact support or log in to remove that bank account information immediately or before the next transaction if done fraudulently. In addition, if a new bank account is added as a default, the person who made the change would be easier to identify.

In theory, a hacker who has stolen a domain name and has account access at could also facilitate transactions to create a paper trail of legitimacy for those stolen domain names. This is a bit far fetched and would be pretty unlikely from my perspective.

Domain name sales data is quite valuable, especially when it involves third parties who have not authorized the release of this data. I think should add a form of 2 factor authentication, allowing its customers to add a layer of login security for their accounts. The threat may be limited to data, but domain name sales data is valuable, especially when it spans many years. One scary thing is that if someone did gain unauthorized access to an account, perhaps a reused or easy password, the account owner would likely have no idea if no changes were made or transactions were started.

Obviously, people should use unique and complex passwords at each website where they have an account. Unfortunately, many people still reuse passwords at different websites or they have easy to guess passwords. I think 2 factor authentication can help reduce this risk, and I would like to see start offering 2FA.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn


  1. All it takes is one hack and their reputation goes down the drain.

    Magna cum laude
    Graduate of Domain King Academy

    MBA-My Big Ass(all of you have one)
    PHD-people having dickheads


Please enter your comment!
Please enter your name here

Recent Posts

.Bet Domain Name Acquired for 5 Figures, Reportedly Resold for $600k

According to a tweet from Identity Digital (formerly Donuts), the domain name reportedly sold for $600,000. I have not verified or researched the...

Finalize a Deal by Connecting on LinkedIn

When I agree to a negotiated deal on a platform like Dan or Sedo, I have always held the expectation that the payment will...

Google Ads Selects Squadhelp for Case Study

If you have visited a Squadhelp landing page, chances are good that you have seen their advertising when you visit other websites that have...

Reliance is “More than Metal” Following Upgrade

Reliance Steel & Aluminum Co. has existed as a business for more than 80 years and is publicly traded under the RS ticker symbol...

What to do with an Unused Domain Name

A person who has long owned a 3 letter .com domain name reached out to me to try and sell it. It's a nice...