NinerNet Communications™

Corporate Blog

iDNS Canada: Another year, another domain scam

9 January 2016 23:24:31 +0000
iDNS Canada domain name expiration notice.

iDNS Canada domain name expiration notice

Looking very much like the “invoices” sent out years ago by the heavily-fined (and, at various times, suspended by both ICANN and CIRA) so-called Domain Registry of Canada (also known as Internet Registry of Canada, Domain Registry of America, Domain Registry of Europe,, Brandon Gray Internet Services Inc. and many more), the “not a bill” “domain name expiration notice” received by NinerNet Communications recently reminds us that some people only know how to do business dishonestly — or at the very least on the fringes of legality.

Although it could have been copied, the notice received by us from “iDNS Canada” is almost identical to those of the Domain Registry of America sent out in previous years, and the maple leaf used in the iDNS Canada logo is indeed identical to that used by the Domain Registry of Canada in previous notices.

Let’s analyse a few aspects of this friendly and helpful “domain name expiration notice”:

  • Their website domain on their notice is, the dot-as country-code top-level domain (ccTLD) being registered to American Samoa, a south Pacific island nation. Trying to load the website at that address results in a redirection to, the dot-to ccTLD being registered to Tonga, another south Pacific island nation. I suspect they didn’t register a dot-ca domain because they’re not flavour of the month down at CIRA headquarters (assuming a connection, which is not much of a stretch), and might have had their domain suspended in short order had they registered a dot-ca.
  • The footer of their website claims that they are “Internet Domain Name Services Inc.” — a name also used on the return envelope in which you’re supposed to send your cheque (or credit card number) and payment stub. Their contact page (when loaded from a computer in Canada) offers the same box number address in Toronto, Ontario, Canada that is on their notice (delivered to our Canadian address; more on that in a moment), which is located in Bridlewood Mall, where there is a Canada Post outlet hosted by Shoppers Drug Mart offering post office boxes.
  • If you load their contact page from a computer located in the United States (or the United Kingdom, actually), the contact page offers a suite number address at 924 Bergen Avenue in Jersey City, New Jersey, United States of America. A quick check shows this to be a UPS Store, so the “suite number” is also actually a mail box number.
  • On their contact page is an email address on the domain, which is registered to the same company at the same box number in Jersey City in the US.

There are three notable things about this notice:

  • First of all, the notice refers to, a secondary domain that we use but which is registered to our US address. However, it was sent to our primary Canadian address, which is also on the same contact page on our website as our US and Zambian addresses.
  • As with the almost identical Domain Registry of Canada and Domain Registry of America phoney invoices, the “notice” from iDNS Canada makes reference to another “available” domain (in this case ninernet.BIZ) and invites us to send in payment to register it. However, is not available; it has been registered by us since 2010. There is no indication on the notice what would happen to this extra money if we decided to send it in to register this additional unavailable domain.
  • Finally, while similar such “notices” in the past have included fine print that authorises the sender to transfer the registration of the domain from under the management of the existing registrar to management by the sender of the so-called solicitation (a process referred to as “domain slamming“), this one doesn’t include any such fine print. In fact, there isn’t even any indication on the “notice” that sending money to iDNS Canada (aka Internet Domain Name Services Inc.) will obligate them to do anything, as they have no way to renew a domain that is not under their control!

So don’t send them money, as you’re almost certainly sending money into a black hole from which you will likely see no service and from which you will probably be unable to retrieve it!

As always, if you receive any kind of communication from a third-party (with whom you don’t already have an established and trusted relationship) about your domain — via postal mail, email, telephone, fax or even smoke signal — be suspicious, be wary. If you’re not sure whether or not it is legitimate, please contact us about it and we will be more than happy to take a look and advise you whether or not it is legitimate.

Phoney legal notice alert!

15 October 2010 05:19:54 +0000

“Domain Support Group” and “VeriSign”

6 June 2002 (original posting date on NinerNet website)

On Tuesday and Wednesday mornings we received faxes from a company calling itself “Domain Support Group”, located in New York, USA. These faxes are designed to look like legal notices, with much quoting of legal tracts and the dropping of legal phrases often quoted in the news these days such as “intellectual property”, “bad faith”, “dilution of trademark”, “Uniform Domain-Name Dispute-Resolution Policy”, “complainant”, “false descriptions”, “in accordance with the United States legal code”, etc. They also contain an official-looking account number and the warning; “You are required to advise the notification processor of your intent to license this domain on or before the expiration of this notice.”

These notices are designed to scare you into registering a dot-us domain (at an unspecified price) that may be similar to a domain that you already own. We called these people in response to the faxes we received but, once they realised we were onto their game, they were not very forthcoming with information. Through other sources we have determined that they are trying to charge several hundred dollars for a domain (which makes sense considering the legalese in the notice), something you can buy from most domain registrars (including NinerNet) for about $25.

The first notice you may receive is titled “URGENT NOTICE OF DOMAIN EXTENSION”, and it gives you 24 hours to respond. The notice you will receive 24 hours later is titled “FINAL NOTICE”. Both notices are addressed to the attention of the “Business owner or manager”.

Please ignore both of these notices. If you do receive a notice from these people and you feel so inclined, you might consider reporting this to the Federal Trade Commission (FTC) in the United States and/or your local authorities if you are not located in the US.

It has also come to our attention that the same company even cold calls domain owners, trying to get them to renew, register or transfer domains (in TLDs other than dot-us as well) — all you have to do is give them your credit card number!

This is yet another example of the sleazy practices that are being used to try and get people to register or transfer domains without full disclosure of the possible consequences. In January we warned you about the so-called Domain Registry of Canada — today we received yet another of their phony invoices. (You can refresh your memory about that scam on our site.)

Yet another example was stopped by the American courts recently, this one perpetrated by the company that wants you to trust them — VeriSign (formerly trading in the domain business as Network Solutions), whose slogan is “The Value of Trust”. They sent out some intimidating notices, even to their own existing clients, threatening them with dire consequences if they did not renew with or transfer their domain to VeriSign.

If you receive any notice via e-mail, fax or postal mail (or even smoke signal for that matter), no matter how official or legal it looks, please take a moment to review it to see if it is legitimate. If you have any doubt, we would be more than happy to look at it for you. In the confusing world of the competitive domain-registration business, it can be very easy to forget who you chose to handle the registration of your domain last year (or beyond). These companies are counting on you to forget.

To read this notice on our site and see copies of notices received from both VeriSign and the “Domain Support Group”, please see As usual, thanks very much for your time.

Scanned images of “Domain Support Group” and VeriSign notices:

Phoney invoice alert!

14 October 2010 20:00:52 +0000

“Domain Registry of Canada” and “Internet Registry of Canada”

5 January 2002 (original posting date on NinerNet website)

Once again we find it necessary to issue a warning about realistic-looking “invoices” for domain renewals. We brought this up in July last year, and the same company is attempting the same thing under a different name. What was called the “Internet Registry of Canada” is now attempting to scare you into renewing your domains with them under the name of “Domain Registry of Canada” (noted on the “invoice” as “a registered business style of 1446513 Ontario Limited”).

When we brought this to your attention last year, one of the three major complaints levelled by the likes of the Royal Canadian Mounted Police and the Canadian government’s Competition Bureau was that the “invoices” looked too much like they were issued by a Canadian government department. The new “invoices” are almost identical, although the Canadian flag has been replaced with a bigger maple leaf. (See the end of this message for links to bulletins issued by the RCMP and the Competition Bureau, a link to scans of an “invoice”, and a textual description of the “invoice”.)

The second major complaint was, as implied above, that these solicitations looked too much like an official invoice from an existing supplier, and that an unsuspecting employee or even business owner might pay the “invoice” resulting in unintended consequences (including your Web site and e-mail going down). This has not changed — the solicitations still look like invoices.

Third was the strong language used, implying that you were in imminent jeopardy of losing your domain if you did not act immediately and send payment to the soliciting company. Again, this has not changed, although the language has been moderated slightly and, buried amongst the other promotional text, is a statement that the invoice-like solicitation “is not an invoice” but rather an “easy means of payment” should you be fooled. However, as with the previous scam, the “invoice” states that your “current domain name must be renewed” (emphasis is on the “invoice”).

As before, one of the goals of these “invoices” is to get you to transfer your domain from your current registrar to the “Domain Registry of Canada”. Another goal is to convince you to needlessly register numerous variations of your domain, potentially quadrupling your annual domain fees. Space is provided for your credit card number should you choose to actually send such sensitive information to a company with such questionable business practices.

Although this company is seeking to have you transfer your domain to them, the very fine print (requiring a magnifying glass and strong light to read) on the back of the “invoice” states that “you agree to provide written, signed authorization to DRoC for the transfer of the domain name to another registrar and agree to pay any and all fees that may be charged by DRoC to effect the transfer.” This policy is clearly designed to make it easy for you to transfer your domain to them from your current registrar, but very difficult to transfer back to your chosen registrar and away from “Domain Registry of Canada” once you realise that you have been scammed. Such a policy is known as “domain hijacking”, and there other examples of this unethical practice — please see the links at the bottom. This policy also goes against international agreements governed by the Internet Corporation for Assigned Names and Numbers (ICANN), to which “Domain Registry of Canada” is either directly or indirectly a party.

A similar scheme was practised by some unscrupulous companies back when the long-distance telephone market was deregulated in both Canada and the United States. It had a very descriptive term — “slamming”. If I remember correctly, the process involved the victim endorsing a low-value cheque payable to the victim from the new long-distance company, with the fine print stating that you wished to switch from your current long-distance carrier to the new one. This practise was outlawed, but regulators have been playing catch-up with the Internet since day one.

So how do you know if an invoice you received is genuine, and how do you find out when your domain really expires? Because domains are renewed on an annual (or longer) basis and we are all used to receiving monthly invoices to remind us to pay for services, it’s easy to forget the answers to both of those questions. It has even happened to Microsoft, believe it or not, when they forgot to renew The best way to find out is to go to a reputable domain registrar, or the site of the single registration authority (from which registrars get their authority) for your top-level domain (TLD). In the case of, just use the form on their home page to check your domain. Since your domain is “taken” (by you, of course), you can click on the link on the page displaying the results of your search, and you will see a new page detailing (among other things) who your current registrar is and when your domain expires. If your domain really is about to expire, you can then go to your registrar’s home page and use their Web site to renew your domain. If all else fails, please contact us if you are not sure and we will decisively determine when your domain expires, who your registrar is, and who you should be paying.

As an aside, NinerNet Communications recently started accepting domain registrations. While we still think that is one of the best registrars out there (and certainly far superior to the likes of Network Solutions / Verisign), we would be happy and honoured to accept new domain registrations, renewals and transfers. Since this is a new service, we don’t yet have an automated system in place. Please contact us for the details.

Finally, here is a description of an official-looking “invoice” sent out by the “Domain Registry of Canada”. It arrives in a #10, plain, brown window envelope with a red maple leaf in the top, left-hand corner and the words “Domain Registry of Canada” to the right of the maple leaf. A similar layout is reproduced at the top of the actual “invoice”, which is printed on white paper using black and red ink. It refers to a domain that is probably registered to you and warns you that you risk “loss of your online identity” and that your “current domain name must be renewed” (emphasis is on the “invoice”). It then suggests several possible renewal periods for your existing domain (up to five years) and then suggests several other similar domains that you should register. Payment is accepted by cheque or credit card and is requested to be sent to a post office box in Thornhill, Ontario, Canada. A white return envelope (requiring postage) is included, completing the invoice-like package.

Sorry this was so long, but we felt that this was important enough to warrant a full explanation. If you have any questions or concerns, please let us know.

Here are some links pertinent to this scam:

Scanned images of an “invoice” package:

NinerNet home page


RSS icon. RSS

General Information:

This is the corporate blog of NinerNet Communications. It's where we post announcements, inform and educate our clients, and discuss issues related to the Internet (web and email) hosting business and all it entails. This includes concomitant industries and activities such as domain registration, SSL/TLS certificates, online back-up, virtual private servers (VPS), cloud hosting, etc. Please visit our main website for more information about us.



Recent Posts:




accounts receivable apple billing branding cira contact information domain registration domain registry of canada domain renewals domains domain sales dot-ca domains dot-zm domains down time droc email encryption facebook google happy hosting customers hosting transfer icann invoices iphone kwacha maintenance paying your bill paying your invoice quarterly kwacha rate review rates registrar transfers reputation scams search engine optimisation search engine optimization security seo service hours spam ssl ssl/tls support transparency wordpress zamnet


On NinerNet: