Domain Name Security Tips


Domain names can be a company’s most valuable asset, so losing ownership of a domain name for even 15 minutes can hurt a company dearly.

If the DNS is changed, you will likely know quickly because things like email, your website, and so on simply stop working as they did prior. Sometimes this can be related to your domain name expiring, due to an outdated credit card on file for auto-renew and domain renewal emails were missed for an example.

Sometimes you may lose ownership of a domain and not even know it until it’s too late, because thieves know that any changes to DNS will alert the owner. So they make a subtle change of registrant email or gain access from an old expired domain/email that controlled the account. If a thief gains access to your registrar account email, it can go undetected since any notification would be sent to the registrar account email.

What if your domain name was stolen? Think of all the things that your domain name is connected to. It’s normally a big deal. Since domain theft happens, as well as unwanted expiration, there are processes to prevent it and avert a potential disaster:

  1. Never use the same email address for your domain name registrar main account and the data displayed for WHOIS records. Use one email address on a different domain name for your account, a different email address and domain name for information in WHOIS records.
  2. Always use two-factor authentication. Not only for your domain name registrar account but also your email client. For example, you may want to use a Gmail account email for your WHOIS email data and then a domain name you control for your main registrar account. Access to each should require 2FA.
  3. Use WHOIS privacy at your domains registrar. This is a double layer. If a thief can’t even see an email address, there is little they can do besides start guessing or moving on to another target. If you did use the email address in the past, consider this security layer broken because there are services that store WHOIS history data.
  4. Password reset / User ID request. If you get a request from your domain name registrar and you didn't initiate it, ignore it and do not click anything in the email notification. One, it may be a spoofing attempt and secondly, somebody may be trying to access your account and this is a way to prevent it.
  5. Registry Lock. The ultimate defense. Registry Lock is done via your domain name registrar and the registry of your domain name. For example, Verisign is the registry for .com and .net domain names. There is an added cost to this security layer but well worth it for a vital asset. You get extended domain name renewal protection, plus any changes to even DNS require a process with more than one party involved. To note, registry lock is different than the standard registrar lock at a domain name registrar and not all domain registrars offer this upfront.

Domain name security is very important and many options are available to domain name owners, it’s just important that you use them!

Domains can be forgotten because you can renew a domain name for up to 10 years. A lot can change in 10 years, so it’s always good practice to log into your domain name registrar account monthly and just check your account, your email associated with it and the settings in regards to your domains. Verify that your credit card on file is valid and up to date.

Any key asset domain names like your main brand domain and any system-critical domain names should have registry lock on them. Registry lock is the highest protection from unwanted expiry, unwanted DNS changes, and unwanted account changes. Internal theft and external theft should be considered.

Uni Joins the Afternic Syndication Network!

September 17, 2020

Many people know that a rainy day at an auto dealership is a lost day for sales. Time and money...

Spend Less on SEO, More on a Memorable Brand

August 25, 2020

Search Engine Optimization or the more common acronym term, SEO. Is it the biggest scam of the...

Uni Support Update: The 7 Day Formula

May 19, 2020

With the way the world works changing, the butterfly effect of internet changes takes effect....

Better together: Uni joins GoDaddy

February 11, 2020

Uni has always been about catering to domain investors, domain lovers, and people who understand...

Domain Name Buyer Brokerage, the White-Glove Domain Service

February 4, 2020

Simply finding a way to contact a domain name owner can be a crazy task that the average person...

Join Uni at NamesCon 2020

January 16, 2020

The Uni Sales Team will be attending NamesCon 2020 in Austin, TX and we would like to speak with...

New Missed Connections: Part III

November 26, 2019

Back by popular demand! An updated list of incomplete domain transactions. It has been a while...

Building a Great Single-Page Website For Your Small Business

November 21, 2019

Whether you're a freelance photographer, own a hardware store, or have some other type of small...

Get Inspired: How to Get Ideas for Domain Names

October 10, 2019

Domain name inspiration arrives through a variety of paths. The goal is to build and expand a...

Branding and Domain Names, The Ignition System

August 27, 2019

Building a powerful brand isn't easy. It requires a great first impression, credibility, trust...