Meeting with IANA (Audio Transcript) Meeting with ICANN Compliance (Audio Transcript) Action Items/Resolutions (Submitted: October 19, 2011) Registrars still failing basic compliance Publishing of the Lifecycle of Registrar breach notices Publishing of Registrar proof of compliance Current legal issues of certain Registrars Review of Registrar WDPRS response

The Report That Shook ICANN Get on Kindle| Order hardcopy Request from KnujOn to ICANN to respond after six months ICANN Rejects Concerns KnujOn Responds to ICANN's Unusual Letter KnujOn's March 2011 Report Drug-dealers Thrive on Registrar Secrecy Hidden Registrars ICANN Complaince Failure and Malware

Thwarting Abusive Registrations PDF Brief At CircleID.com At infosecurity.us

KnujOn's Dakar Agenda

1. Registrars still failing basic compliance
   

   It is with great disappointment that we must report some Registrars remain out of compliance for the same issues first reported in June 2011 by KnujOn. Resolutions:

   1. We are requesting that ICANN compliance address these outstanding issues in the 15 days allotted by the RAA.
   2. We are requesting that At-Large be notified whenever a new Registrar is accredited or a current Registrar has their contract renewed.

2. Publishing of the Lifecycle of Registrar Breach Notices
   

   In the interest of transparency and accountability ICANN should publish the full lifecycle of contractual breaches. Currently, the results of breach notices posted by compliance are only known if the Registrar is terminated. Some cure notices are posted but this is done in an Ad Hoc fashion. The following Registrars appear to be in perpetual breach of contract with no closure (Breaches must be cured in 15 Days):

   • Alantron Bilisim Ltd - Issue: Port 43 WHOIS Failure Since 11.07.2011 Escalated to Suspension, 16 Feb 2012
   • Samjung Data Service Co., Ltd - Issue(s): Port 43 WHOIS Failure and Failure to Escrow Since 09.02.2011 Apparently Cured
   • Asadal, Inc. - Issue(s): Failure to Escrow and non-compliant transfer policies Since 06.09.2011 Apparently Cured
   • iWelt AG - Issue(s): Failure to Escrow Since 01.12.2011 Apparently Cured
   • Zog Media, Inc. DBA Zog Names - Issue(s): Failure to Escrow Since 01.12.2011 Apparently Cured, but Registrar status unknown
   • Centrohost - Issue(s): Failure to Escrow Since 01.12.2011 Apparently Cured
   • Mister Name - Issue(s): Failure to Escrow and Pay Fees Since 11.16.2010 Apparently Cured
   • Open System Ltd. - Issue(s): Port 43 WHOIS Failure Since 11.16.2010 Apparently Cured

3. Publishing of Registrar proof of compliance
   

   ICANN compliance should publish an annual audit of Registrar compliance on each section of the RAA, sharing the results with the community in a public report as well as a fixed posting of basic compliance data within the ICANN website. This compliance data should include for each Registrar:

   • A link to the Registrar website where their mailing address is posted. Why? Background articles: 1, 2, 3, 4, 5, 6, 7, 8, 9
   • A link to the Registrar website where their policies and pricing are posted. Why? Background Article
   • The location of the Registrar Port 43 WHOIS server. Why? Background Article
   • A link to the Registrar website where the web-based WHOIS is found. Why? Background Article
   • The most recent Registrar fee payment date. Why? The most common grounds for termination is failure to pay fees.

4. Current legal issues of certain Registrars

   OnlineNIC settled cybersquatting suits with Verizon, Microsoft and Yahoo in 2009. While a settlement may have saved OnlineNIC from a violation under RAA 5.3.2, OnlineNIC has in doing so admitted to warehousing domain names for speculation. Resolution: We request an investigation of this situation and a public statement of the findings.

5. Review of Registrar WDPRS response (Updated 01.09.12)
   

   Pending Rogue Registrar Scoring
   Based on responses to complaints and follow-up in this area we are drafting a list of rogue Registrars. At this time the following Registrars (but not limited to) may be designated as rogue: NetLynx, BizCN, eNom, OnlineNIC, Core, Joker, URL Solutions (list to be updated and may include Registrars with other issues).
   
   Update from 11/20/11
   The chart below shows the results of a recent study by KnujOn in terms of follow-up compliance with WHOIS inaccuracy complaints filed by KnujOn. This is about response, not just volume. While some Registrars have many abusive domains with false WHOIS, in addressing complaints the issues are resolved. In the case of NetLynx the number of unresolved complaints indicates possible problems at this Registrar. Fortunately, Net-Chinese Co deleted EVERY domain in the complaints, Thanks! Each complaint was the result of a false WHOIS record found while investigating spammed domains reported by KnujOn members. The first column next to each Registrar name indicates the total number of false WHOIS complaints, the second has the number of domains deleted after the complaints were filed, and the third shows specifically how many illicit pharmacy domains remain online regardless of the complaints. The last shows the number of domains still online beyond the ICANN lifecycle deadline (See previous chart).

   

KnujOn - Turning your spam into a safer Internet

KnujOn.com, LLC is an independent, non-sponsored abuse handler and Internet security research company based in Boston, Massachusetts and Wilmington, Vermont. KnujOn accepts abuse data in the form of spam and other security threats to develop a clear picture of conditions facing the Internet. KnujOn builds profiles of online criminal groups, evaluates the quality of Registrars and Internet Service Providers, issues WHOIS challenges, documents policy failures, tests compliance mechanisms, issues reports to law enforcement, and educates the public about complex Internet security issues. We see our role as one of assisting the ordinary Internet user in navigating the complex technical bureaucracy of the global network and augmenting public services in the face of rampant illicit electronic traffic.

Get a KnujOn Account! First Name: Last Name: Contact Email: - Only for issuing reports, no marketing, address never sold Do you want your email used in opt-out requests? Yes No What is this? Country: United States (NARALO) Bermuda (NARALO) Canada (NARALO) Puerto Rico (NARALO) Afghanistan Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bhutan Bolivia Bosnia and Herzegowina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Congo, the Democratic Republic of the Cook Islands Costa Rica Cote d'Ivoire Croatia (Hrvatska) Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic East Timor Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands (Malvinas) Faroe Islands Fiji Finland France France, Metropolitan French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guinea Guinea-Bissau Guyana Haiti Heard and Mc Donald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran (Islamic Republic of) Iraq Ireland Israel Italy Jamaica Japan Jordan Kazakhstan Kenya Kiribati Korea, Democratic People's Republic of Korea, Republic of Kuwait Kyrgyzstan Lao People's Democratic Republic Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macau Macedonia Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia, Federated States of Moldova, Republic of Monaco Mongolia Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Qatar Reunion Romania Russian Federation Rwanda Saint Kitts and Nevis Saint LUCIA Saint Vincent and the Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Seychelles Sierra Leone Singapore Slovakia (Slovak Republic) Slovenia Solomon Islands Somalia South Africa South Georgia and the South Sandwich Islands Spain Sri Lanka St. Helena St. Pierre and Miquelon Sudan Suriname Svalbard and Jan Mayen Islands Swaziland Sweden Switzerland Syrian Arab Republic Taiwan, Province of China Tajikistan Tanzania, United Republic of Thailand Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United States Minor Outlying Islands United Kingdom Uruguay Uzbekistan Vanuatu Venezuela Viet Nam Virgin Islands (British) Virgin Islands (U.S.) Wallis and Futuna Islands Western Sahara Yemen Yugoslavia Zambia Zimbabwe (optional - for statistical purposes and ICANN representation) I agree to these terms I would like to support KnujOn with a voluntary Donation what is this? Membership Benefits {confirmation required in javascript pop-up}

{top}

Utilities and Submission Methods

How to submit Forward SPAM email to KNUJON@COLDRAIN.NET Additional addresses for: Career/Job/Resume Spam: jobphishing@coldrain.net Forum Spam: forumjunk@coldrain.net Junk Faxes: junkfaxes@coldrain.net Counterfeit products: fake@coldrain.net Software Piracy: swpiracy@coldrain.net Deposit Scams: depositscams@coldrain.net Phishing attempts: phishing@coldrain.net Prescription Drug Junk: rx@coldrain.net Stock Junk: stockjunk@coldrain.net

Upload Spam Here 1. Choose a File: 2. Upload it: {Other options} Get a KnujOn.com Hoodie

Information

KnujOn Presentation by Garth Bruen at OWASP Sept 24th 2008 in New York

KnujOn at Ole Miss NAGTRI/NCJRL CYBERSECURITY Conference

{top}

Cybercrime and Security

Video explains underground Internet drug market

Support KnujOn by buying this messenger bag

{top}

{top}

Infrastructure and Industry

Protect Yourself

{top}

Мошеннической Деятельности!