Domain Name Scams
I’m looking at a letter from a company called “ILSCORP.NET”. It is in reference to another domain name that Webmail.us owns. The notice date is February 15th, 2005. I have a customer number of CD474454XX.
“Please make checks payable to Internet Listing Service Corp. Please write your customer number on the front of your check Enclose check in the addressed envelope provided DO NOT SEND CASH”
Pretty serious stuff here, it goes on:
“To ensure listing by Feb 28, 2005, please remit payment on or before Feb 22, 2005 All listings are final”
Well, I’d better get right on this! But then there’s the text on the back that says, “This is not a bill. This is a solicitation. You are under no obligation to pay the amount stated above unless you accept this offer.”
It’s too bad that the rest of the document makes it look like we owe someone money to continue a service that we already had.
It’s always in the fine print
OK, the print is pretty legible, but it is clearly a font size or two down from the rest of the doc. And it’s on the back page when the front page already looks like a complete document.
The art of deception
There are a few subtle but convincing touches that scams such as this use to close deals and make money.
-- They use real information about you or your company --
In this case, they used our domain name. If you own a domain name then the billing address for your company and the names of contacts at your company are available through a standard Internet service known as WHOIS. Using this information allows them to customize their attack.
-- They create the impression that you are already a customer --
The customer number at the top of the “bill” seems legit. If I have a customer number, maybe I really did send these people money before.
The solicitation itself appears to be a bill. It has 3 major sections: “How to make payment:”, “Website address listing includes:”, and “Payment information:”. It shows me how much to pay and where to send my check—but, “Do not send cash”.
-- They create a sense of urgency --
Because “All listings are final”, I need to hurry and send them a check. They give me a due date of Feb 22. This sense of urgency might get me to respond before I look things over carefully.
-- Online risks --
It seems that being a domain name owner makes you a target for this and related scams. Having your WHOIS information freely available to the entire world is a double-edged sword.
And the more we all do business online, the harder it is to remember the names of businesses we use on an infrequent basis. It’s easy to make a mistake.
Other common scams to watch out for
Domain name slamming: you get an email or a letter telling you that your domain name will expire soon. The letter explains that in order to protect your domain name a check needs to be sent to company XYZ who can keep your domain name safe. The problem is that the letter doesn’t come from the company you used to register your domain.
Phishing: you get an email asking you to go to your bank or online retail store in order to update your contact information or to check on an order. The only problem is, that the links provided in the email don’t go to Amazon.com or whatever site you intended to visit. Instead, you end up at a site that closely mimics the real site and you might mistakenly hand over a username and password or perhaps even credit card information.
Nigerian email scam: this is an absolute classic. Read about it on Snopes.com. If you’ll front some money to a wealthy but helpless stranger, they’ll send you millions.
How to protect yourself
Keep good records! Knowing whether or not something is legit can be as easy as walking to a file cabinet and looking for a name that matches the letter or email you have received. Congress, with the Sarbanes-Oxley Act, is encouraging (enforcing?) record-keeping policies for businesses in the United States.
Pick up the phone and make a call. Or send an email. ILSCorp's letter to me and their website are both lacking a phone number-- a red flag in itself. Their website says I may have to wait up to 2 days for a response to the email I sent them this morning asking about their service and my domain name. I'll let you know when they get back with me. ;)
Email scams can generally be caught by good anti-spam filters. Yes, like the ones we use for our customers. But I don’t know a good way to filter snail mail except through a little extra time and attention to detail.
And, as always: if it seems too good to be true, it probably is.
-Kirk
I've gotten a number of these scams in the mail. I find it amusing because the scams often want you to pay more for domain re-registration than what your registrar charges.
Another way to protect oneself from other forms of fraud: buy a shredder. Any piece of paper that I don't want to keep that has account numbers on them I shred. It's scary the amount of information you can find out about someone by going through their garbage (not that I've ever done it =).
Posted by: Vince | February 17, 2005 at 05:17 PM
Good point about the shredder, Vince. Along those same lines, I've heard it said that homeowners shouldn't put their trash out the night before trash pickup; put it out the morning-of as a way to discourage potential trash stalkers.
BTW, still no word from ILSCorp.net in response to my email.
Posted by: Kirk Averett | February 17, 2005 at 05:22 PM
Well, I promised that I would come back and let everyone know about my response from ILSCorp.
I sent my email to them on 2/16. Today is 2/23, one week later. I still have no response. So maybe they meant that it might take up to 2 weeks to respond to email requests, not 2 days.
Posted by: Kirk Averett | February 23, 2005 at 01:44 PM
Today marks 3 weeks from the day I sent my email to ILSCorp. I have not received a reply of any kind from them. I rest my case: they run a scam.
Posted by: Kirk Averett | March 09, 2005 at 09:28 AM
ILSCorp sent me this rather anemic response yesterday, March 13th. So with almost a full month of time to craft a reply, here is what they sent:
"ILS is a search engine ranking and submission services firm. We do not provide domain name, web hosting or email services. We apologize for any confusion."
Posted by: Kirk Averett | March 14, 2005 at 10:29 AM
I have read a lot of complaints about this company - I have one too. Has anyone ever located a phone number?
Posted by: Donna | October 10, 2005 at 11:23 AM
Hi Donna,
Well, their website is still missing a phone number, but their WHOIS information has a phone number listed.
http://www.dnsstuff.com/tools/whois.ch?ip=ilscorp.net
It appears to be a Denmark phone number, which is probably pretty discouraging to potential callers.
-Kirk
Posted by: Kirk Averett | October 10, 2005 at 12:52 PM
I received what I believed to be an invoice from these jokers. I wondered why I owed £65 to a company that I had never heard of. I googled the company name and found 100s of entries complaining about them, (Most of them from the USA) - Now it seems they are operating in the UK too.
This must stop. Who can we complain to ?
Posted by: Steve | November 09, 2005 at 09:09 AM
Domain Registry of America is one of the worst scam artist. I have over 400 clients and they call me about receiving an invoice from this company most often, trying to lure them into unwittingly transfer their domain to this company. Do not register with Domain Registry of America, they are unethical!
Posted by: Justine Wolfley | March 13, 2006 at 08:34 AM
Butterfly Marketing seems to be all the rage this week. A few months ago it was Jason Thinga- me- jig with his Article Announcer, next week John Reese will have some new you beaut thing to get us all excited about.
Posted by: Andy Michaels' Blog on Internet Marketing and Online Success | March 13, 2008 at 06:45 PM
people say that jeff paul is a scam. i completely disagree with this comment because i personally have a really good experience with jeff paul and it really helped me make money. People should avoid blaming someone for something that is not true.
Posted by: Tracy Esau | May 01, 2008 at 01:35 AM
One afternoon, I was in the backyard hanging the laundry when an old, tired-looking dog wandered into the yard. I could tell from his collar and well-fed belly that he had a home. But when I walked into the house, he followed me, sauntered down the hall and fell asleep in a corner. An hour later, he went to the door, and I let him out. The next day he was back. He resumed his position in the hallway and slept for an hour.
This continued for several weeks. Curious, I pinned a note to his collar: "Every afternoon your dog comes to my house for a nap. "
The next day he arrived with a different note pinned to his collar: "He lives in a home with ten children - he's trying to catch up on his sleep."
I cried from laughter
Sorry, if not left a message on Rules.
Posted by: Melissik | May 06, 2008 at 03:26 PM
Looking for even more good content on internet security and identity theft prevention tips then have a look here
Posted by: Identity Theft | June 19, 2008 at 06:31 AM