Feeds

Serial typosquatter settles FTC charges

Tangled web

High performance access to file storage

An internet hijacker who allegedly registered 5,500 copycat web addresses in a bid to divert lost surfers onto a porno site has agreed to hand over $164,000 to settle charges brought against him by the US Federal Trade Commission (FTC).

Defendant John Zuccarini also agreed to refrain from dodgy business practices and abide by an enhanced compliance and monitoring regime as part of his settlement with the FTC, which sued him for contempt of a previous court injunction banning similar dodgy business practices, dating from 2002.

Zuccarini was jailed for 30 months for possession of child pornography and other offences related to the same illicit business in August 2003.

Legal actions against Zuccarini, involving separate civil and criminal prosecutions, began in October 2001 when the FTC charged him with registering misspellings of legitimate domain names as part of a typosquatting ruse. For example, the defendant registered 15 variations of the popular children's cartoon site, www.cartoonnetwork.com, and 41 variations on the name of pop star Britney Spears.

Surfers who misspelled the web address of sites or inverted a term – using cartoonjoe.com rather than joecartoon.com – were taken to the defendant's sites, where they were bombarded with pop-up ads punting anything from internet gambling to pornography. In some cases the legitimate website was also launching, tricking consumers to believe it was responsible for the smut-filed pop-ups.

The FTC obtained a permanent injunction against Zuccarini in May 2002 along with a court order requiring him to hand over $1.8m in illicit income. The court also imposed book keeping requirements on Zuccarini so the FTC was able to monitor his compliance with the court's order.

Zuccarini was jailed for 30 months and ordered to serve a subsequent three years on probation after being found guilty of possession of child pornography and misleading use of domain names in August 2003. The case was brought against Zuccarini by the US Attorney for the Southern District of New York in a separate prosecution.

The defendant's spell behind bars failed to act as a sufficient deterrent, it appears. By December 2006, Zuccarini was once again the subject of FTC complaint that he was redirecting lost surfers to dodgy sites. The agency also charged that Zuccarini had failed to keep up with record-keeping and reporting requirements in the original order. The FTC alleged that Zuccarini, both individually and doing business as Cupcake Party, was back in the typosquating business.

The court issued a temporary restraining order designed to bring a stop to prohibited business practices, freeze Zuccarini's assets, and mandate the preservation of records.

The settlement between Zuccarini and the FTC, announced on Tuesday, settles this action. ®

High performance access to file storage

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
NSA denies it knew about and USED Heartbleed encryption flaw for TWO YEARS
Agency forgets it exists to protect communications, not just spy on them
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
HP ArcSight ESM solution helps Finansbank
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.