惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

WordPress大学
WordPress大学
D
Darknet – Hacking Tools, Hacker News & Cyber Security
Hacker News: Ask HN
Hacker News: Ask HN
N
News and Events Feed by Topic
Forbes - Security
Forbes - Security
The Last Watchdog
The Last Watchdog
TaoSecurity Blog
TaoSecurity Blog
Schneier on Security
Schneier on Security
SecWiki News
SecWiki News
V
Vulnerabilities – Threatpost
Project Zero
Project Zero
O
OpenAI News
W
WeLiveSecurity
Security Archives - TechRepublic
Security Archives - TechRepublic
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
H
Hacker News: Front Page
Cisco Talos Blog
Cisco Talos Blog
Spread Privacy
Spread Privacy
Help Net Security
Help Net Security
P
Privacy & Cybersecurity Law Blog
K
Kaspersky official blog
S
Security @ Cisco Blogs
Latest news
Latest news
AWS News Blog
AWS News Blog
U
Unit 42
Martin Fowler
Martin Fowler
阮一峰的网络日志
阮一峰的网络日志
S
Secure Thoughts
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Know Your Adversary
Know Your Adversary
Scott Helme
Scott Helme
博客园 - 司徒正美
B
Blog RSS Feed
C
Check Point Blog
Hacker News - Newest:
Hacker News - Newest: "LLM"
D
Docker
Google Online Security Blog
Google Online Security Blog
Jina AI
Jina AI
aimingoo的专栏
aimingoo的专栏
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Last Week in AI
Last Week in AI
月光博客
月光博客
C
CXSECURITY Database RSS Feed - CXSecurity.com
S
SegmentFault 最新的问题
NISL@THU
NISL@THU
T
The Blog of Author Tim Ferriss
C
Cisco Blogs
Attack and Defense Labs
Attack and Defense Labs
小众软件
小众软件

Domain Name Wire | Domain Name News

Graen domain appraisal review: it’s fine, but not worth your time Donald Trump forces ICANN to move meeting again Losing DropCatch bidder tries reverse hijacking domain name Construction equipment company tries reverse domain name hijacking Appraise.software domain appraisal review: no backup data, but bulk tools .Co domain registry nukes expired domain auctions Saw.com domain appraisal review: struggles with two word domains What percentage of new domain registrations are for malicious purposes? Domains in Stockholm – DNW Podcast #589 Eighteen domain names end users recently acquired Lease-to-own statistics from a large domain portfolio Escrow.com: .Com hits record high, .ai settles Panel denies cybersquatting claim against RapidPay.com NameWorth domain appraisals: based on old data? Sedo makes cuts and Wix lays off 20% of staff NameJet and SnapNames report: 156 recent domain sales Dynadot domain appraisal review: Fewer “WTF” moments than other appraisal tools GoExpired domain appraisals review: a tight range for most valuations Tucows: shorter domain verification window could create more problems than it solves Recap: Nordic Domain Days 2026 ICANN says GoDaddy’s Whois contact form is OK Appraise.net domain appraisal review: Big numbers, little consistency Interesting Verisign data about domain usage and renewal rates Full-time domain investing – DNW Podcast #588 Atom domain appraisals review: strong supporting data provides reasonable appraisals Network Solutions duped by fake UDRP notice GoDaddy’s appraisal tool struggles to keep up, but has uses End user domain sales: Atom Edition Estibot review: Strong on some domains, weak on others Insurance company AXA loses second cybersquatting dispute against axa.org OpusDNS acquires fruits.co domain sales platform We put 15 domain appraisal tools to the test. This is what we learned Chemicals company attempts reverse domain name hijacking Twenty domain names end users bought this week Birth certificates for AI agents – DNW Podcast #587 The kong.ai UDRP decision deserves scrutiny 33 companies that bought .ai domain names this year, including SpaceX Man files lawsuit to halt transfer of .bet domain name Internet Commerce Association announces two board changes Please, don’t let your web developer register your domain name End user domain sales: a tool to search the Epstein files Real estate developer tries reverse domain name hijacking Dish launches .latino top level domain ICANN publishes 2025 tax return, including salary info Acquiring and building TLDs – DNW Podcast #586 A dentist, an affair, and reverse domain name hijacking German electronics company tries to reverse hijack katek.com April’s top domain name stories Revenue down at Tucows Domains, but margin up Organization gives up fight for Prosecco.com domain name Test driving Notify.domains, “Google alerts for domains” Domain names from Ponzi scheme are on auction Early Warning Report officially launches for new top level domains UDRP decisions up 15% in Q1 Germany’s .de domain faces outage That’s disturbing: web hosts take down site for trademark complaints Sixteen new end user domain name sales Legal company tries to reverse hijack legally.io Julia Child’s foundation takes down recipe website From naming to domaining – DNW Podcast #585 .Com domain registrar rankings – GoDaddy, Namecheap, Squarespace and more ICANN opens application period for new top level domains GoDaddy reports earnings, slower big aftermarket transactions Domain stuffing: when free domain promos cross the line New end user domain sales: mergers create domain acquisitions Can five cents find your next domain buyer? A look at NameMaxi Customer sues GoDaddy, alleging domains improperly transferred from account D3 to fractionalize domain portfolios ICANN to study registries connecting with Web3 Nova Registry “unites” domain industry at Manchester United game Intuit tries to reverse hijack QB.com after failing to buy domain for $2.5 million Round Two: new TLDs return – DNW Podcast #584 German translation company tries reverse domain name hijacking Verisign ups guidance, reveals first-year renewal rates Breaking: VeriSign raising wholesale .com prices New CSC report examines top level domains popular with large corporations Atom adds new end user targeting, and is building an outbounding system Where to meet the domain industry in 2026 Escrow.com passes $8 billion milestone, reports solid Q1 Nineteen new end user domain sales Identity Digital to offer “Birth Certificates for AI Agents” NTIA puts .us domain out to bid, relaxes registrar ownership rule Two companies filed cybersquatting complaints against the same domain Man files cybersquatting dispute against two letter domain matching his initials Ethereum Name Service resolver temporarily hijacked This week’s end user domain sales: AI, protein, and a Buddhist temple Vibe coding is weakening a key domain value signal Walkthrough: using ChatGPT with Unstoppable Domains Public Interest Registry opens nominations for this year’s .ORG Impact Awards A banner month for expired domain names Cloudflare launches domain registration API Watch a cybersquatting case in court Sixteen recent end user domain name sales Most domain investors are calculating ROI wrong Instant Domain Names – DNW Podcast #582 Can you try to sell a domain you bought on a lease-to-own plan? .De domain holder warning: NIS2 requirements Sudden domain interest and keeping on top of your domain portfolio End user domain sales: peptides U.S. defense contractor tries reverse hijacking open.space
Domain hijack led to crypto heist
Andrew Allemann · 2026-04-18 · via Domain Name Wire | Domain Name News

CoW DAO says someone tricked the domain registry, leading to domain hijack.

Man stealing crypto through his laptop

The cryptocurrency platform CoW Swap said a domain name hijack led to a phishing attack this week.

In a post mortem on the event, the group said that someone tricked the .fi domain registry, Traficom, into transferring the domain. .Fi is the country code for Finland.

Cow.fi was registered through Amazon Route 53, which in turn used Gandi to register the domain. According to the CoW DAO:

An attacker socially engineered the .fi domain registration system. Impersonating a senior contributor related to CoW DAO, they submitted falsified identification documents to Traficom (the Finnish Communications Regulatory Authority, which operates the .fi TLD registry), which led to a dispute process being raised against the registrar.

According to the DAO, Gandi did not respond to the dispute, which led to the attacker gaining access to the domain.

Now that the attack has been resolved, CoW has added  .fi’s registry lock to its domain. It said using registry lock was not possible through Amazon Route 53 before the attack.

Any business with an important domain name should use a registry lock service, which creates manual authentication processes before a domain can be changed. That said, only 70% of top domains used registry lock, according to a DNW analysis in October 2025.

It’s a bit disturbing that the registry itself was tricked, raising concerns about whether that could happen with its registry lock service, too.

Crypto projects are susceptible to attack, and all crypto platforms should use a top level domain and registrar that offers registry lock.

Andrew Allemann has been registering domains for over 25 years and publishing Domain Name Wire since 2005. He has been quoted about his expertise in domain names by The Wall Street Journal, New York Times, and NPR. Connect with Andrew: LinkedIn - Twitter/X - Facebook

Advertisement

Get Our Newsletter

Stay up-to-date with the latest analysis and news about the domain name industry by joining our mailing list.

No spam, unsubscribe anytime.

Reader Interactions