惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Google DeepMind News
Google DeepMind News
P
Proofpoint News Feed
S
Schneier on Security
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
The Exploit Database - CXSecurity.com
B
Blog RSS Feed
G
GRAHAM CLULEY
Microsoft Azure Blog
Microsoft Azure Blog
Know Your Adversary
Know Your Adversary
N
Netflix TechBlog - Medium
A
Arctic Wolf
W
WeLiveSecurity
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
T
The Blog of Author Tim Ferriss
AWS News Blog
AWS News Blog
Engineering at Meta
Engineering at Meta
T
Threatpost
博客园 - 叶小钗
G
Google Developers Blog
U
Unit 42
Latest news
Latest news
Cyberwarzone
Cyberwarzone
N
News and Events Feed by Topic
Simon Willison's Weblog
Simon Willison's Weblog
Hacker News: Ask HN
Hacker News: Ask HN
MongoDB | Blog
MongoDB | Blog
H
Hacker News: Front Page
F
Fortinet All Blogs
T
Tailwind CSS Blog
The Register - Security
The Register - Security
Apple Machine Learning Research
Apple Machine Learning Research
C
CXSECURITY Database RSS Feed - CXSecurity.com
H
Heimdal Security Blog
A
About on SuperTechFans
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
C
CERT Recently Published Vulnerability Notes
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
N
News and Events Feed by Topic
Application and Cybersecurity Blog
Application and Cybersecurity Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Schneier on Security
Schneier on Security
Y
Y Combinator Blog
V
Visual Studio Blog
GbyAI
GbyAI
Forbes - Security
Forbes - Security
www.infosecurity-magazine.com
www.infosecurity-magazine.com
N
News | PayPal Newsroom
P
Proofpoint News Feed
T
Threat Research - Cisco Blogs

Domain Name Wire | Domain Name News

Graen domain appraisal review: it’s fine, but not worth your time Donald Trump forces ICANN to move meeting again Losing DropCatch bidder tries reverse hijacking domain name Construction equipment company tries reverse domain name hijacking Appraise.software domain appraisal review: no backup data, but bulk tools .Co domain registry nukes expired domain auctions Saw.com domain appraisal review: struggles with two word domains What percentage of new domain registrations are for malicious purposes? Domains in Stockholm – DNW Podcast #589 Eighteen domain names end users recently acquired Lease-to-own statistics from a large domain portfolio Escrow.com: .Com hits record high, .ai settles Panel denies cybersquatting claim against RapidPay.com NameWorth domain appraisals: based on old data? Sedo makes cuts and Wix lays off 20% of staff NameJet and SnapNames report: 156 recent domain sales Dynadot domain appraisal review: Fewer “WTF” moments than other appraisal tools GoExpired domain appraisals review: a tight range for most valuations Tucows: shorter domain verification window could create more problems than it solves Recap: Nordic Domain Days 2026 ICANN says GoDaddy’s Whois contact form is OK Appraise.net domain appraisal review: Big numbers, little consistency Interesting Verisign data about domain usage and renewal rates Full-time domain investing – DNW Podcast #588 Atom domain appraisals review: strong supporting data provides reasonable appraisals Network Solutions duped by fake UDRP notice GoDaddy’s appraisal tool struggles to keep up, but has uses End user domain sales: Atom Edition Estibot review: Strong on some domains, weak on others Insurance company AXA loses second cybersquatting dispute against axa.org OpusDNS acquires fruits.co domain sales platform We put 15 domain appraisal tools to the test. This is what we learned Chemicals company attempts reverse domain name hijacking Twenty domain names end users bought this week Birth certificates for AI agents – DNW Podcast #587 The kong.ai UDRP decision deserves scrutiny 33 companies that bought .ai domain names this year, including SpaceX Man files lawsuit to halt transfer of .bet domain name Internet Commerce Association announces two board changes Please, don’t let your web developer register your domain name End user domain sales: a tool to search the Epstein files Real estate developer tries reverse domain name hijacking Dish launches .latino top level domain ICANN publishes 2025 tax return, including salary info Acquiring and building TLDs – DNW Podcast #586 A dentist, an affair, and reverse domain name hijacking German electronics company tries to reverse hijack katek.com April’s top domain name stories Revenue down at Tucows Domains, but margin up Organization gives up fight for Prosecco.com domain name Test driving Notify.domains, “Google alerts for domains” Domain names from Ponzi scheme are on auction Early Warning Report officially launches for new top level domains UDRP decisions up 15% in Q1 Germany’s .de domain faces outage That’s disturbing: web hosts take down site for trademark complaints Sixteen new end user domain name sales Legal company tries to reverse hijack legally.io Julia Child’s foundation takes down recipe website From naming to domaining – DNW Podcast #585 .Com domain registrar rankings – GoDaddy, Namecheap, Squarespace and more ICANN opens application period for new top level domains GoDaddy reports earnings, slower big aftermarket transactions Domain stuffing: when free domain promos cross the line New end user domain sales: mergers create domain acquisitions Can five cents find your next domain buyer? A look at NameMaxi Customer sues GoDaddy, alleging domains improperly transferred from account D3 to fractionalize domain portfolios ICANN to study registries connecting with Web3 Nova Registry “unites” domain industry at Manchester United game Intuit tries to reverse hijack QB.com after failing to buy domain for $2.5 million Round Two: new TLDs return – DNW Podcast #584 German translation company tries reverse domain name hijacking Verisign ups guidance, reveals first-year renewal rates Breaking: VeriSign raising wholesale .com prices New CSC report examines top level domains popular with large corporations Atom adds new end user targeting, and is building an outbounding system Where to meet the domain industry in 2026 Escrow.com passes $8 billion milestone, reports solid Q1 Nineteen new end user domain sales Identity Digital to offer “Birth Certificates for AI Agents” NTIA puts .us domain out to bid, relaxes registrar ownership rule Two companies filed cybersquatting complaints against the same domain Man files cybersquatting dispute against two letter domain matching his initials Ethereum Name Service resolver temporarily hijacked This week’s end user domain sales: AI, protein, and a Buddhist temple Vibe coding is weakening a key domain value signal Walkthrough: using ChatGPT with Unstoppable Domains Public Interest Registry opens nominations for this year’s .ORG Impact Awards A banner month for expired domain names Cloudflare launches domain registration API Watch a cybersquatting case in court Sixteen recent end user domain name sales Most domain investors are calculating ROI wrong Instant Domain Names – DNW Podcast #582 Can you try to sell a domain you bought on a lease-to-own plan? .De domain holder warning: NIS2 requirements Sudden domain interest and keeping on top of your domain portfolio End user domain sales: peptides U.S. defense contractor tries reverse hijacking open.space
Domain hijack led to crypto heist
Andrew Allemann · 2026-04-18 · via Domain Name Wire | Domain Name News

CoW DAO says someone tricked the domain registry, leading to domain hijack.

Man stealing crypto through his laptop

The cryptocurrency platform CoW Swap said a domain name hijack led to a phishing attack this week.

In a post mortem on the event, the group said that someone tricked the .fi domain registry, Traficom, into transferring the domain. .Fi is the country code for Finland.

Cow.fi was registered through Amazon Route 53, which in turn used Gandi to register the domain. According to the CoW DAO:

An attacker socially engineered the .fi domain registration system. Impersonating a senior contributor related to CoW DAO, they submitted falsified identification documents to Traficom (the Finnish Communications Regulatory Authority, which operates the .fi TLD registry), which led to a dispute process being raised against the registrar.

According to the DAO, Gandi did not respond to the dispute, which led to the attacker gaining access to the domain.

Now that the attack has been resolved, CoW has added  .fi’s registry lock to its domain. It said using registry lock was not possible through Amazon Route 53 before the attack.

Any business with an important domain name should use a registry lock service, which creates manual authentication processes before a domain can be changed. That said, only 70% of top domains used registry lock, according to a DNW analysis in October 2025.

It’s a bit disturbing that the registry itself was tricked, raising concerns about whether that could happen with its registry lock service, too.

Crypto projects are susceptible to attack, and all crypto platforms should use a top level domain and registrar that offers registry lock.

Andrew Allemann has been registering domains for over 25 years and publishing Domain Name Wire since 2005. He has been quoted about his expertise in domain names by The Wall Street Journal, New York Times, and NPR. Connect with Andrew: LinkedIn - Twitter/X - Facebook

Advertisement

Get Our Newsletter

Stay up-to-date with the latest analysis and news about the domain name industry by joining our mailing list.

No spam, unsubscribe anytime.

Reader Interactions