As Susan mentions, all they need is a few days. At least the registrar actually conducted validation checks, many don't. 

On Mon, Aug 1, 2016 at 10:04 AM, Susan Kawaguchi <susank@fb.com> wrote:

The registrar sent an email to Domain@fb.com which I received but I immediately responded it was not a valid registration and asked for transfer.  No word yet.  

All phishers need is a few days to use the domain name.  

Susan Kawaguchi

Domain Name Manager 

Facebook Legal Dept. 

From: "benny@nordreg.se" <benny@nordreg.se>
Date: Monday, August 1, 2016 at 10:01 AM
To: Susan kawaguchi <susank@fb.com>, "gnso-rds-pdp-wg@icann.org" <gnso-rds-pdp-wg@icann.org>
Subject: Re: [gnso-rds-pdp-wg] Use Case - False registration data to appear as Facebook owned domain name

Curious, how did it get validated?

 

 

--

Med vänliga hälsningar / Kind Regards / Med vennlig hilsen

Benny Samuelsen
Registry Manager - Domainexpert

Nordreg AB - ICANN accredited registrar

IANA-ID: 638

Phone: +46.42197080
Direct: +47.32260201
Mobile: +47.40410200

 

From: <gnso-rds-pdp-wg-bounces@icann.org> on behalf of Susan Kawaguchi <susank@fb.com>
Date: Monday 1 August 2016 at 17:17
To: "gnso-rds-pdp-wg@icann.org" <gnso-rds-pdp-wg@icann.org>
Subject: [gnso-rds-pdp-wg] Use Case - False registration data to appear as Facebook owned domain name

 

Hello All, 

 

Attached is a use case we run into frequently, bad actors will use valid Facebook information in the registration data to make the registration to appear authentic.  

 

Best regards, 

 

Susan Kawaguchi

Domain Name Manager 

Facebook Legal Dept. 

 

_______________________________________________
gnso-rds-pdp-wg mailing list
gnso-rds-pdp-wg@icann.org
https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg

--

Adrian Cheek
Director of Global Partnerships