If you renew your website domain names with Domain Registry of America, it’s a scam to get your domain name transferred

I own several domain names and they come up for renewal at different times. This week I got several renewal notices from Domain Registry of America to renew my domains for just $30 each.  The Domain Registry of America is an Internet domain registrar best known for sending solicitations for business that resemble legitimate invoices.  In 2003, the FTC reached a settlement with the company for practices such as transferring domain registrations to their service under the guise of domain renewal, a practice known as domain slamming, and having hidden fees. Despite this action, the company still sends mass direct mail to consumers resembling invoices with “domain name expiration notice” in bold print. Recipients are targeted for mass mailings with info obtained in violation of their ICANN registrar agreement.

I went online to my account at www.godaddy.com and renewed each one for just $11.62.  You can, too.

_______________________

After I posted this, my friend Carmen Barkett wrote: I had an Art gallery for 16 years; built a website for Artsiphartsi and when I went to renew it learned the day after my domain name expired that a Korean person or company bought the name! I could buy it back for $3-5k if I wanted …. …  At which point I told them to enjoy. I refused. I can re-register in one year if I choose, but it is a big scam to get corporate America’s $$’s. I had a dozen other variations of domains, so no love lost. Careful though if you have a domain name. Renew by the day it expires. 24 hours can make a difference.

—————

Also after I posted this, Facebook friend Jeffrey Smith posted ” My friend got a “Domain Name Expiration Notice” from Domain Registry of America and paid for two years at $50 to continue his domain name. But that’s not what happened. This Domain Renewal Scam is Alive and Kicking is called “domain slamming” and it’s cost him his Web site and his domain name. He must now spend more money to try to get his name back. Use. GoDaddy.com, they’re great.”

At the Domain Renewal Scam is Alive and Kicking link,it reads:

A friend of mine forwarded a suspicious email message recently. I’ve replaced the domain, order number, etc. below:
—————————-
From: Customer Support <support@droa.com>
Subject: Order Confirmation for <domain>, Order ######
To <registered domain holder>,
Thank you for registering/renewing the following domains with the Domain Registry of America, America’s fastest growing Domain Registrar.
We take pride in offering you superior customer service and competitive pricing.
*******************************************************
Order Information
*******************************************************
<domain> renewal/transfering
The order number for <domain> is #####.
*******************************************************
Payment Information
*******************************************************
Your check ##### for $30.00 has been received.
Domain Registry of America
support@droa.com
—————————-

I validated for my friend that the email was bogus. The domain was not held by Domain Registry of America (DROA), and never had been. The domain was not expiring in the next 90 days.
Later he received a follow-up email:

—————————-
From: “Transfer Department” <transfers@namejuice.com>
Subject: RE: <domain>; Order #####
Reply-To: <support@namejuice.com>

To <domain holder>,
Thank you for choosing to transfer and renew <domain> with the Domain Registry of America.
Your transfer and renewal of <domain> is not yet complete.
Due to the changes in the .org renewal process, you will need to obtain an EPP key code from your current registrar.

This authorization key removes the need for the user to send in a fax or reply to an email to verify their transfer request. This is because these names are assigned a unique authorization key at the time of their registration. The key is created and held with your current registrar. You should be able to obtain your authorization key by contacting your current registrar.

Please contact your current registrar using the information below and request your EPP Key code.
Domain: <domain>
Current Registrar: <registrar>
Registrar Phone Number: Please visit their site to contact them

When you call provide them with your domain name (<domain>), and ask for your EPP key.
Once obtained, please click the link below to input your EPP key code and confirm your email address.
http://confirm.droa.com/getepp.asp?e=1&o=####&p=####
You must click on the link above in order to continue the transfer and renewal process.

Yours truly
Domain Registry of America
Toll free 1-866-434-0212 or for International Callers, dial +1(905)479-2533

—————————-

The scam attempts to get domain holders to transfer service and pay accordingly. It seems this scam has been around for at least eight years, though it has morphed over time. Apparently the DROA has chosen to test the 2003 judgment by the Federal Trade Commission (http://www.ftc.gov/opa/2003/12/domainreg.shtm).

One thing of interest here is the two-staged approach: The first message requires no action by the recipient, but the second message tells the user to obtain and hand over the keys to the castle.

One Response to “Persistent Domain-Renewal Scam Alive and Kicking”
Huh, I have actually received this as snail mail from the same company. Sure it’s a scam, but it feels like 50% of everything is. I even get mail from a very well known auto insurance company, with PAYMENT NOTICE ENCLOSED printed on the envelope, even though I’m not insured by them. It’s the company with the gecko mascot

Leave a Reply