Re: panix.com hijacked

["Perry E. Metzger" <perry () piermont com>]

Mark Jeftovic <markjr () easydns com> writes:
> > Once upon a time, Steven M. Bellovin <smb () cs columbia edu> said:
> > > panix.com has apparently been hijacked.  It's now associated with a
> > > different registrar -- melbourneit instead of dotster -- and a
> > > different owner.  Can anyone suggest appropriate people to contact to
> > > try to get this straightened out?
> >
> > Good luck dealing with melbourneit.com; that's the place where domains
> > go to die.
>
> I originally replied offlist, but...
>
> Under the new ICANN transfer policy, this will most likely be
> reversed if its shown to be an improper transfer. You need to
> bring Dotster into this and they need to invoke a transfer dispute
> under the new policy.

Dotster isn't in a position to do anything. They don't show the domain
as being transfered. Someone managed to hack the system. They're
pretty upset by the situation, too.

The membourneit.com folks conveniently refuse to do anything over the
weekend. The bad guys struck around midnight Saturday, Australian
time, so as to make the damage as bad as possible.

Panix is highly screwed by this -- their users are all off the air,
and they can't really wait for an appeals process to complete in order
to get everything back together again.

Perry