You are here :
-
Public Consultations
-
Reference
-
Statistics
-
Publications
-
Blog
- Brands answer the call to the 2nd ‘Cercle des .marque’ event
- Analysis of the .RE
- About the attack on French ISPs’ DNS resolvers
- Using Afnic open data : example with the term COVID
- Hosting a domain name with compound characters
- Eligibility of a holder located in the United Kingdom post Brexit
- Can compound characters be used in a domain name?
- Functioning of Afnic during lockdown
- Which Top Level Domains have an IP address?
- Lala Andriamampianina, may you rest in peace
- Resolutions for 2020: Afnic goes elliptic
- 6 tips to prevent your website from being hacked
- In search of low-cost nTLDs
- Exploring the city through the .paris community
- .org - an alternative perspective
- Looking back on the success of the first meeting of the Cercle des .marque
- Key success factors for Internet extensions: an evaluation grid
- [Video] Conclusions on the Internet Governance Forum (IGF) France 2019
- A brief example of using Afnic Open Data
- Food for thought on the "new TLD" business models
- 30 years of success and danger: the Web, URLs and the future
- [Success stories] Strengthen your infrastructure to suit your ambitions
- February 1, 2019: is the DNS going to shake?
- [Success stories] They chose to have their own TLD
- [Success stories] .museum, how a historic Internet suffix was revived
- The main steps in effectively launching your .brand
- 6 secrets on how to improve the renewal of domain names
- [Video] Back to IGF 2018 in Paris
- A .BRAND to enhance customer experience
- Afnic commits to DNS security at the international level
- Replacement of the KSK of the root zone: Are you ready?
- How the SNCF implemented its new digital strategy with oui.sncf
- Franco-Dutch research project on automatic classification of domain name abuse
- The auditive memorization of domain names
- What are the possible actions against domain name abuses?
- Identity theft by domain name: what Afnic does
- Cybersquatting, Spam, Phishing… the different types of domain name abuses
- [Video] Review of the French Internet Governance Forum 2018
- Custom Internet extensions: the opportunities for brands
- How to avoid inadmissibility in the SYRELI procedure
- Which English terms are most used in .FR domain names?
- Domain name security, the example of cryptocurrencies
- What are the terms most used in .fr domain names?
- Personality test: Are you ready for GDPR?
- Do GeoTLDs like .alsace have an effect on local SEO?
- The 11 vital locations to display your domain name!
- What means of action for a Right-holder ineligible under the Naming Policy?
- Domain name litigation: the recognition of an AOC rights in the SYRELI procedure
- Why choose a domain name under a geoTLD?
- Afnic, a community first and foremost!
- The defense of personality rights in the SYRELI procedure
- When will the next round of the new gTLDs take place?
- A million good reasons for coming to the Afnic Forum...
- Yeti DNS-over-TLS public resolver
- 2016, the beginning of a new cycle for Afnic
- .fr has just passed the 3 million domain names milestone
- My experience inside the Afnic Legal Department
- Future of ICANN Privatization? Internationalization? Supervision?
- Excellence at Afnic - Our coming-out
- Speech at the transmittal of the IANA Stewardship Transition Plan
- Exclusive offer: 100% money back on your domain name*!
- 8 tips for choosing the right domain name
- IPv6 and DNSSEC are respectively 20 and 19 years old. Same fight and challenges?
- L.45-2 paragraph 1 of the CPCE: When a domain name disrupts the French law
- How to avoid getting your domain name stolen by email?
- Accountability and IANA transition: behind the scenes
- Stop selling domain names!
- abc.xyz : erratum.xyz
- A comprehensive approach to French regional branding
- abc.xyz : Meanwhile, back in France…
- abc.xyz: Why not alphabet.com? (The conspiracy theory version)
- abc.xyz : The controversial success of .xyz
- Corporate Communications, Constant Crisis
- abc.xyz : Why not alphabet.com ?
- alphabet.xyz : How Alphabet got its domain name
- abc.xyz : Don't worry, we're still getting used to the name too!
- IANA transition crosses a major milestone in Buenos Aires
- A day in the life of the Icann empowered community
- IANA transition : the machine is moving, but the deadline is approaching
- Corporate Social Responsibility and the DNA of ccTLDs
- China Changing in Leaps and Bounds
- Towards a less intrusive DNS
- ICANN: what does accountability stand for?
- ICANN Singapore. A debate at the other end of the world
- ICANN Reform, or opening Pandora's box
- Internet Governance Forum: What is to be done?
- Slam spam!
- Icann : freeze !
- Scams and identity theft, the experience of a SYRELI reporter
- French Regional Reform Does Not Mean the End of GeoTLDs
- Lessons Learnt from NETmundial
- Suggestions for a successful IANA transition
- Wind of change at Afnic!
- Back to the future of the Afnic Legal Service
- The US Backs ICANN for Internet Governance
- Should the registrars streamline their gTLD strategy?
- The IANA elephant in the room
- 2014 : change of course for the naming system
- Why do regions want a place online?
- What can Afnic do?
- Internet governance: let’s get to work!
-
FAQ
-
Glossary
-
Certificates
Identity theft by domain name: what Afnic does
10 September 2018 - By Nathalie Boulvard
Time goes by peacefully when suddenly you are accused of every evil or almost all, and simply because your identity has been hijacked by a domain name... or even several. How can that happen? Quite simply when domain names are registered using all or part of your personal data (family name and contact details).
In most of these cases, without your knowledge, you are the victim of domain names used by third parties for cybercrime, such as online fraud, sales of counterfeit products, business scams, defamation, etc.
In one ruling of the Paris district court handed down on March 02, 2017, Ms. X. found that a third party identified in the .fr Whois database as Ms. Y. had registered a domain name in November 2016 that was used to operate an online sales site of shoes and accessories, in all likelihood fraudulent. However, in this case, Ms. Y. was not at the origin of the registration of the domain name in dispute. The registration occurred after her identity was stolen.
In cases of identity theft in order to register a domain name, Afnic and the registrars are called upon to intervene, within the limits of their prerogatives, when the victims of these processes bring the case before them.
Since 2015, Afnic has identified and processed 50 motions for identity theft involving the registration of 115 domain names[1].
If at our level we have only record a small number of cases compared with the total number of domain names registered under the .fr TLD (3 million), the fact remains that these practices can have an impact on the victims who may have to account for themselves, without knowing why, to the police or as part of judicial or extrajudicial proceedings.
It is about this type of situation that Afnic wishes to warn you, inform you and when it can, intervene on your behalf.
Afnic warns you!
First of all we invite you to be vigilant in your browsing and your use of the Internet.
To do so, it is important to adopt a number of good practices to protect your personal data. In particular:
- Do not connect to a website or order products online or perform any other operation without first checking: the name and legal existence of the publisher of the site, the conditions of sale or supply of services, the security of the site (URL https, security certificate indicated by the presence of a green padlock), or the consistency of the site (logo, pages, consistent content, presence of non-fake legal notices, etc.).
- Do not disclose your personal data, including on the social networks.
- Be wary of contentious sales sites or bogus surveys, pretexts for the collection of identifying data that are then resold to third parties for fraudulent uses.
- Only communicate relevant personal data via secure channels.
- Configure your tools in private mode.
- Know how to exercise personal rights in order to protect your personal data.
- Learn about and train yourself in the use of digital security and digital identity protection through the following websites:
- The ANSSI website and in particular thanks to the basic precautions and massive open online course (MOOC) available free of charge until April 2019.
- The CNIL website with the Control your data pages in particular.
- The Cybermalveillance.gouv.fr website, which has produced an awareness kit about malicious cyber activity.
- Defend yourself by putting the Cybermalvaillance.gouv.fr website in your favorites: the site provides assistance for the victims of malicious cyber activity.
Afnic informs you!
Even if you know all of this and use good practices, the risk of identity theft by domain name exists.
It is important to remember that there is no prior control of registrations of domain names.
In accordance with the legal framework specific to domain names under the .fr TLD, Afnic does not conduct any due diligence of applications for registration, except those relating to the terms subject to prior review as provided by the naming policy. Domain name are registered on the basis of statements made by the applicant and under their sole responsibility.
This means that, at the time of registration, Afnic has no obligation to control or verify the identity of the holder of the domain name. Afnic, therefore, cannot be held responsible for incorrect, false or misleading information or any omissions in the "Whois" database. Similarly, Afnic accepts no liability arising from the registration or use of a domain name, or for any direct or indirect prejudicial consequences arising from same.
Given these methods of registering domain names without prior verification of identity, the public authorities in the course of their investigations as well as private persons confronted with cybercrime by domain names must allow persons appearing unwittingly in the Whois database to demonstrate that they are the victims of identity theft.
The SYRELI College was faced with this situation, particularly in decision reference number FR-2018-01537. In this case, Afnic had notified the opening of the procedure to the holder using the e-mail address as well as the postal address appearing in the Whois database; however the postal address of the holder turned out to be that of the victim of identity theft. As part of the SYRELI procedure, the victim can then respond on the platform to defend and agree to the request of the Applicant to obtain the transmission or deletion of the domain name in dispute.
Afnic intervenes!
The provisions of the naming charter allow Afnic to conduct verification or control operations under specific conditions presented on the Afnic website and explained in its legal brochure: Guide for Rights Holders.
In addition, the provision of inaccurate data by the holder may lead to the deletion of the registration of the corresponding domain name once Afnic has enabled the holder of a domain name to rectify the situation.
In case of identity theft involving the registration of a domain name, the first thing to do is to file a complaint with the police. With this complaint, Afnic will ask the registrar to contact their client, the owner of the domain name in question, and provide an answer as soon as possible. In parallel, Afnic will freeze the domain name. The domain name will be deleted if the registrar is unable to authenticate the identity of the holder, thus confirming the identity theft.
Faced with this type of situation, together with the registrar with which the domain name has been filed, Afnic takes all the measures at its disposal to put a rapid end to proven identity theft.
Nathalie Boulvard
![]() | Juriste & CIL |
Is this domain
available ?
News
- December 10, 2020 Three major projects on the roadmap of the Afnic International College
- November 23, 2020 Lucien Castex has been reappointed as a member of the Multistakeholder Advisory ...
- November 17, 2020 Marianne Georgelin joins Afnic's Executive Committee as Legal Director
- November 16, 2020 ‘Je passe au numérique’: the Afnic initiative for VSEs/SMEs
- November 12, 2020 The Afnic Foundation announces its 2020 winners promoting an inclusive Internet ...