Thanks Richard. I couldn’t have said it better myself. Best, Jon

From: owner-registrars@gnso.icann.org [mailto:owner-registrars@gnso.icann.org] On Behalf Of Lau
Sent: Friday, August 03, 2007 5:13 PM
To: 'Bashar Al-Abdulhadi'
Cc: john@johnberryhill.com; 'Registrars Constituency'
Subject: RE: [registrars] Grave Robbing and SEDO Fencing

Well, I’m just sitting here hypothesising.

But really Domain Hijacking is usually a form of online identity theft, where the thief one way or another convinces the Registrar, (or the ISP hosting the Admin Email) that he is the owner.

I’m not one to comment on NSI’s security except to say that I highly respect their senior staff and have witnessed major efforts to stamp out fraud. If anything NSI could teach many other registrars how to protect domains. This is a far cry from the pre-Champ M. days.

Richard

From: Bashar Al-Abdulhadi [mailto:bashar@kuwaitnet.net]
Sent: 03 August, 2007 10:12 PM
To: Lau
Cc: john@johnberryhill.com; 'Registrars Constituency'
Subject: Re: [registrars] Grave Robbing and SEDO Fencing

Hello Richard,

Lau wrote, On 8/3/2007 7:42 PM:

Hi John,

So, in summary.... an identity theft occurs at NSI (hijacker pretends to be

Don Teske likely by sending in a fax with faked ID) and the buyer at Sedo

claims he's an innocent purchaser....

its that simple at NSI to change domain ownership with fake IDs?

it should be harder for american registrant to be faked at american registrars due the easier methods to identify ownership?