03-10-2020, 02:14 AM
One thing that is important when one buys a domain is to make doubly sure you are the only owner of that domain with exclusive access to the domain credentials - direct ownership. The best way to ensure this exclusive ownership is to do the sale directly with a well known Registrar such as Namecheap or Namesilo instead of using third parties or affiliates. Don't use a domain reseller whom you don't know and beware when friends of friends of resellers try and sell you cheap deals. Like if the price looks too good to be true, there is a very good chance it is too good to be true and you may become an unwitting victim of some or other scam. I'm not saying that is certain it will happen, but in this day and age of specialist hackers, particularly with domains you need to be vigilant and use lots of common sense.
Domain shadowing is one of the exploits that can happen to you when someone else gets access to your domain registration information. The information can be stolen, but it could also be obtained at the point of sale, like you're not the first owner, but the third party or reseller who sets the domain up for you - makes you into the second owner. Since they then have access to the DNS of your domain they can create sub-domains with it. They do it with a huge number of victims and through that they have the ability to set up massive lists of subdomains, which they can use in quickly rotating fashion to either redirect victims to attack sites, or to serve as hosts for malicious sites. Before you know it, your domain and IP get blacklisted and you won't be able to see any signs of hacking or exploits on your VPS as they don't need access to your VPS or server to do their evil deeds. They do it at the front end of the domain at the Domain Registrar.
So better be safe than sorry. Don't go for super cheap deals from domain affilliate resellers, or if and when you do, make dead certain you know whom you are dealing with. Rather insist in creating the domain directly with the Registrar and make sure to keep all of the information safe and secure so no one can get access to the information. Also check at your Domain Registrar as the really good Registrars will provide you with tools in your Registrar Dashboard with which you can keep your domain safe. Such as locking it.
Domain shadowing is one of the exploits that can happen to you when someone else gets access to your domain registration information. The information can be stolen, but it could also be obtained at the point of sale, like you're not the first owner, but the third party or reseller who sets the domain up for you - makes you into the second owner. Since they then have access to the DNS of your domain they can create sub-domains with it. They do it with a huge number of victims and through that they have the ability to set up massive lists of subdomains, which they can use in quickly rotating fashion to either redirect victims to attack sites, or to serve as hosts for malicious sites. Before you know it, your domain and IP get blacklisted and you won't be able to see any signs of hacking or exploits on your VPS as they don't need access to your VPS or server to do their evil deeds. They do it at the front end of the domain at the Domain Registrar.
So better be safe than sorry. Don't go for super cheap deals from domain affilliate resellers, or if and when you do, make dead certain you know whom you are dealing with. Rather insist in creating the domain directly with the Registrar and make sure to keep all of the information safe and secure so no one can get access to the information. Also check at your Domain Registrar as the really good Registrars will provide you with tools in your Registrar Dashboard with which you can keep your domain safe. Such as locking it.