Feeds

Notorious registrar gets deactivation notice for president's sin

RIP EstDomains

Internet Security Threat Report 2014

EstDomains, a domain name registrar with a reputation for catering to cyber criminals, suffered another blow after the organization that oversees the net's address system said it would revoke the company's right to sell domain names because of a recent fraud conviction in Estonia of its president.

In a letter addressed to EstDomains President Vladimir Tsastsin, an official with the Internet Corporation for Assigned Names and Numbers said EstDomain's registrar accreditation would be revoked on November 12.

"This termination is based on your status as President of EstDomains and your credit card fraud, money laundering and document forgery conviction," Stacy Burnette, ICANN's director of contractual compliance, wrote. ICANN rules permit the group to terminate registrars who have officers or directors convicted of a crime related to financial activities, she said.

An EstDomains representative said the group was working to block the move.

Tuesday's letter (PDF) is the latest black eye for EstDomains, which has been sharply criticized by many security experts for registering domain names used in phishing, spam, malware, and the sale of drugs that are illegal in some countries.

Last month, a company that provides software used to shield the identity of domain name owners said it was cutting off EstDomains because a high percentage of its customers used the anonymizing service to register websites that engaged in cyber crime. Three weeks later, network provider Intercage, struggling with its own reputation as a haven for cyber criminals, terminated its contract with EstDomains and its sister company EstHost.

Throughout the entire controversy, principals with EstDomains and EstHost have maintained they do not knowingly allow customers to run illegal websites.

"We don't provide the service for spammers/phishers etc, and we never did," Konstantin Poltev, registry liaison for EstDomains, wrote in an email to The Register on Wednesday. He said officials with the company were appealing ICANN's move on several grounds. For one, Tsastsin hasn't been a director or officer of EstDomains since June. And for another, the February court record, which was reported here by Brian Krebs's Security Fix blog, has never taken effect.

"The document the ICANN is referring to, is the decision of the Circuit court, or, in other words, the court of the first level, which has never been enforced and will never be," Poltev wrote. "95% of all criminal cases in the Circuit courts of Estonia end with bringing in a verdict against a defendant, however in most cases the decision of the Circuit court is pushed to Supreme court for review, end up with the final decision of a Supreme court in favor of a defendant."

Over the past few months, as a flurry of negative reports and news articles cast EstDomains in a harsh spotlight, the company has grown more responsive to reports of abuse, one critic said.

"They started dumping anything we'd tell them about and it almost seemed like it was out of a panic," said Garth Bruen, part of a two-man outfit called Knujon that is dedicated to clamping down on registrars that enable phishing and the sale of steroids and other drugs that are illegal in the US and many other countries without a prescription.

ICANN is already preparing for the transfer of some 281,000 domain names under EstDomains' management. The registrar is free to recommend an ICANN-accredited agent to receive a bulk transfer, or qualified registrars may volunteer under established ICANN procedures. It will be interesting to see what companies, if any, agree to take on a customer base with such toxic reputation. ®

Intelligent flash storage arrays

More from The Register

next story
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
Oi, Europe! Tell US feds to GTFO of our servers, say Microsoft and pals
By writing a really angry letter about how it's harming our cloud business, ta
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Business security measures using SSL
Examines the major types of threats to information security that businesses face today and the techniques for mitigating those threats.