One of the many reasons that our customers are the best in the world is that they contact us whenever something doesn’t seem right. That’s how we found out that a bunch of weasels (or perhaps a lone weasel) were sending fake Name.com emails to phish personal information. Not cool.Read More
This post is meant to give you recommendations on how to prevent a potential domain hijack before it happens, because once a domain transfers to another registrar it can be difficult to re-acquire, especially if the transfer was in compliance with ICANN policy. If the registrar is not willing to transfer the domain back into your control then your options for recovery become very limited.Read More
On Wednesday news broke that there’s a widespread, potentially harmful vulnerability that affects the computer systems that a lot of us use every day, including OSX and Linux. It’s called the Bash Shellshock Bug. Here’s a quick rundown of how the bug works, who it affects, and how we’re handling it at Name.com:
What is the Shellshock Bug?
It is vulnerability in Bash, which is the software used to control the command shell in many flavors of Unix, and it has been shown to be present in OS X. It allows an attacker to run a wide range of malicious code remotely.
Am I vulnerable?
Desktop users should not be vulnerable. However, if you allow allow SSH access from remote connections you are potentially vulnerable.
I use SSH for Mac OS X/Linux, what s...Read More
Google has just published an interesting blog post about SEO best practices on its Webmaster Central Blog, and one interesting detail is that Google is going to start ranking sites with SSL Certificates higher. Google is making this move because it believes in making the internet a more secure place, and a more secure web starts with more secure website connections.Read More
Two-factor authentication is a service that keeps your account extra secure by requiring both a standard memorized username and password, as well as an additional time-sensitive code to enter your account. Because usernames and passwords could theoretically be guessed, adding two-factor authentication to the mix adds an unmatched level of security to your accounts. To retrieve your security code or token from your account, you use an app that will display a set of numbers for a brief period of time.
At name.com, our free two-factor authentication, NameSafe, uses Versign VIP Access to issue a temporary account security code. The security code changes every 30 seconds and can only be retrieved from one device.
Here’s a tutorial on how to get started with NameSafe. Again, it’s a totally free service, and it makes it practically impossible for someone to access your Name.com account unless they have access to your mobile device.Read More
Passwords can be pretty tricky to guess as long as you’re not lazy when creating them. By keeping a few best practices in mind, you can create a password that will be extremely tough to crack.
But it’s a big bad internet world, and there’s still a chance your username and password combo could be compromised. That’s why we provide a 100 percent absolutely free way to add an extra layer of protection to your account. It’s called NameSafe.
Chris Gaston, our systems administrator, says, “Hey all, FYI theres a lot of hacks for WP, Joomla, and Drupal floating
It’s time to update those themes! Here’s more from the National Cyber Awareness System.
US-CERT Current Activity
Increased Exploitation in Web Content Management Systems
Original release date: September 21, 2012
Last revised: January 4, 2013
US-CERT is aware of recent increases in the exploitation of known
vulnerabilities in web content management systems (CMSs) such as
Wordpress and Joomla. Compromised CMS installations can be used to host
US-CERT recommends that users and administrators ensure that their CMS
installations are patched or upgraded to remove known vulnerabilities.
This may require contacting the hosting provider...
You don’t have to look too far or for too long to find someone who has had their domains hijacked. User names and passwords can be hacked, but when you add two-factor authentication–AND IT’S FREE–you can rest easy. Get your NameSafe today. And, yes, while we say free, we mean when you use your smart phone to get the Namesafe App. Here, Owen has all the details in Technicolor.Read More
But a few days ago I was building a sand castle on the beach with my two little boys. Actually, I’d build it and they’d knock it down. It was hilarious fun and could have had us featured on a brochure for contentment. I’ve been thinking fondly about those days, and hoping I was savoring every second of it, because I had no idea that at that very moment my work was getting spanked by the biggest DDOS attack ever to come barreling at Name.com.
In short, some very large and very powerful Chinese entity was not happy with one of our customers. The owner of Boxun.com has been publishing news about the scandal of the former Chinese political superstars Bo Xilai and his wife, Gu Kailai...Read More
There is a saying, “hindsight is 20/20″. We experience that quite a bit here at Name.com. We do a bit of armchair quarterbacking from time to time as well. Analogies aside though, we do our best to reflect and learn from any situation where it makes sense to do so. Such is the case with the recent DDOS attack that we experienced. It can be a double-edged sword to be transparent about things, but transparency is something we value a lot at our little company. It’s an important trait that we’ve learned to value as individuals as well. So when an entity attacked us with a massive DDOS attack, attempted to extort us, and continued to attack us due to not giving into the extortion, we decided to open up and let our customers know exactly what transpired...Read More