I have an account at Network Solutions that has domain names I won at NameJet auctions. I periodically move my domain names to GoDaddy, and I typically keep fewer than 20 domain names in my NSI account.
There have been a number of times I have read about domain names that were stolen from Network Solutions accounts. DomainGang.com has done a good job of covering domain name theft, and a Google search for “site:domaingang.com Network Solutions stolen” shows quite a few articles that were published about domain names that were allegedly stolen from Network Solutions accounts over the years. In addition, I recently wrote about a security incident at Web.com registrars, including Network Solutions and Register.com.
When I logged into my NSI account a couple of days ago, I was prompted to make some security updates to my account. I created a pin code and went through a couple of additional steps to ensure my account is secure. This afternoon, I received an email from Network Solutions “introducing a whole new level of security.” Here’s what I was told:
We’re introducing a whole new level of security.
With so many people working remotely, it’s more important than ever that the tools we use to access our accounts are safe and secure. That’s why we are providing you with new features that deliver stronger security for your Network Solutions account. These features include:
Security PIN
Your Security PIN is a way for Customer Support to verify who you are and what account you have access to. They will ask you for your Security PIN every time you call or chat with them.Trusted Phone
Your Trusted Phone will be used as a backup method for Customer Support to verify who you are if you should forget your Security PIN. A Trusted Phone is also needed to activate 2-Step Verification when you want to add another layer of security to your account.2-Step Verification
This additional layer of security is to protect your account from unauthorized access. Once you activate 2-Step Verification, you will be sent a verification code to your Trusted Phone every time you log into your account. Even if someone else gets your password, it won’t be enough to sign-in to your account.What do you need to do?
The next time you log into your Account Manager, you will be asked to set-up these new features. We recommend you complete the setup right away.Want to enable even more security?
Save today on the purchase of an SSL, malware protection for your website or Cyber Security protection for your smartphone. All of our Security products are 50% off – just for you when you use code SECURITY at checkout.Best Regards,
Network Solutions Customer Support
I wish Network Solutions allowed me to use my Yubikey or Google Authenticator for 2 factor authentication rather than just having my SMS 2FA, but I don’t really keep any valuable domain names there very long. That aside, I am glad to see NSI and likely other Web.com registrars giving customers the opportunity to protect their accounts further.
Elliot…
“That aside, I am glad to see NSI and likely other Web.com registrars giving customers the opportunity to protect their accounts further.”
…shouldn’t you have said “FORCING customers…” there instead of “giving,” unless I’m misreading what appears to be stated rather plainly? It’s bad enough but still ten billion times more understandable and makes ten billion times more sense when something like CoinBase makes you log in with 2A, but a registrar? I don’t think so…
Please see my comments on this here:
https://onlinedomain.com/2021/03/02/domain-name-news/network-solutions-is-introducing-new-security-features/#comments
In fact, I’ll copy them here too:
“John
March 3, 2021 at 5:03 am
What exactly are they smoking?
Do they not understand they are already the ABSOLUTE MOST INCONVENIENT registrar to use, a total UI AND PROCESS NIGHTMARE?
HAS NOBODY IN THE INDUSTRY EVER EVEN TOLD THEM SINCE THEY OBVIOUSLY HAVEN’T FIGURED IT OUT THEMSELVES YET AFTER ALL THESE YEARS? And that’s aside from the pricing of course.”
“John
March 3, 2021 at 5:10 am
Every time I have to deal with a domain there I am literally filled with dread. Do they not understand how awful their system is? How is it even possible they do not? Or is it simply what they want? Would they not be bankrupt already if they weren’t owned by a larger entity?”
And you really have to love Konstantinos’s reply to that last one:
“Konstantinos Zournas
March 3, 2021 at 5:40 am
This is what they want because they don’t know any other way.”
Old proverb: “If it ain’t broke, don’t fix it.”
New for 2021: “If it’s already broke, don’t break it even more.”
Elliot, Thanks for your note about keeping only a few domain names at NS, and not keeping valuable domain names there. In your experience what’s a good registrar to keep high value domain names?