Feeds

Notorious registrar gets deactivation notice for president's sin

RIP EstDomains

High performance access to file storage

EstDomains, a domain name registrar with a reputation for catering to cyber criminals, suffered another blow after the organization that oversees the net's address system said it would revoke the company's right to sell domain names because of a recent fraud conviction in Estonia of its president.

In a letter addressed to EstDomains President Vladimir Tsastsin, an official with the Internet Corporation for Assigned Names and Numbers said EstDomain's registrar accreditation would be revoked on November 12.

"This termination is based on your status as President of EstDomains and your credit card fraud, money laundering and document forgery conviction," Stacy Burnette, ICANN's director of contractual compliance, wrote. ICANN rules permit the group to terminate registrars who have officers or directors convicted of a crime related to financial activities, she said.

An EstDomains representative said the group was working to block the move.

Tuesday's letter (PDF) is the latest black eye for EstDomains, which has been sharply criticized by many security experts for registering domain names used in phishing, spam, malware, and the sale of drugs that are illegal in some countries.

Last month, a company that provides software used to shield the identity of domain name owners said it was cutting off EstDomains because a high percentage of its customers used the anonymizing service to register websites that engaged in cyber crime. Three weeks later, network provider Intercage, struggling with its own reputation as a haven for cyber criminals, terminated its contract with EstDomains and its sister company EstHost.

Throughout the entire controversy, principals with EstDomains and EstHost have maintained they do not knowingly allow customers to run illegal websites.

"We don't provide the service for spammers/phishers etc, and we never did," Konstantin Poltev, registry liaison for EstDomains, wrote in an email to The Register on Wednesday. He said officials with the company were appealing ICANN's move on several grounds. For one, Tsastsin hasn't been a director or officer of EstDomains since June. And for another, the February court record, which was reported here by Brian Krebs's Security Fix blog, has never taken effect.

"The document the ICANN is referring to, is the decision of the Circuit court, or, in other words, the court of the first level, which has never been enforced and will never be," Poltev wrote. "95% of all criminal cases in the Circuit courts of Estonia end with bringing in a verdict against a defendant, however in most cases the decision of the Circuit court is pushed to Supreme court for review, end up with the final decision of a Supreme court in favor of a defendant."

Over the past few months, as a flurry of negative reports and news articles cast EstDomains in a harsh spotlight, the company has grown more responsive to reports of abuse, one critic said.

"They started dumping anything we'd tell them about and it almost seemed like it was out of a panic," said Garth Bruen, part of a two-man outfit called Knujon that is dedicated to clamping down on registrars that enable phishing and the sale of steroids and other drugs that are illegal in the US and many other countries without a prescription.

ICANN is already preparing for the transfer of some 281,000 domain names under EstDomains' management. The registrar is free to recommend an ICANN-accredited agent to receive a bulk transfer, or qualified registrars may volunteer under established ICANN procedures. It will be interesting to see what companies, if any, agree to take on a customer base with such toxic reputation. ®

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
OpenSSL Heartbleed: Bloody nose for open-source bleeding hearts
Bloke behind the cockup says not enough people are helping crucial crypto project
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Bad PUPPY: Undead Windows XP deposits fresh scamware on lawn
Installing random interwebs shiz will bork your zombie box
Experian subsidiary faces MEGA-PROBE for 'selling consumer data to fraudster'
US attorneys general roll up sleeves, snap on gloves
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.