how to fix a hijacked domain (long winded)

Fri Apr 26 21:44:27 UTC 2002

Hello all...

For years I've been using the domain 'virtual-voodoo.com'. Starting
at the beginning of this week I noticed my e-mail starting to slack
off. On Thursday morning it had stopped entirely. After checking
everything on my end I did a 'whois' and noticed that Progressive
Insurance now owned my domain and had since 4/15. Ouch! I have no
idea how that occurred since the domain is paid through August '03
(through Verisign/Network Solutions).

I called Network Solutions and opened a ticket to get things
transferred back. They mumbled something about a fraud division
and said someone would call me.

In the interim I e-mailed the technical contact list on my domain
now and asked if they'd slave their DNS server to mine so that my
domain at least worked. I also explained how I had been hijacked.
I got a reply from Progressive saying that they had bought my
domain legitimately from Network Solutions? Now at this point I
start getting a little worried and go dig up receipts and check
my last 4 months mail for anything from Verisign indicating that
my domain has been transferred or some such (I use their crypt-pw
authentication method). No notices found.

I call Verisign again and explain things. They say that it definately
wasn't "just purchased" but that their had been a transfer. I explain
that I didn't approve any such transfer and I'm being damaged by the
fact that it occurred. The nice person on the phone said it would be
escelated to her manager and resolved that day. It wasn't.

I call verisign again this morning and am told that the department
that could have made the change closes at 5PM so they didn't get to
it yesterday but probably will today. Someone will call me when it
happens. More time passes... I call at 3:15 EDT and am told that
nothing had been done yet. I express my unhappiness that they are
not fixing this as I am their customer and they are at fault for
allowing someone to have my domain. I'm told its escelated and there
is nothing else they can do... they don't call the change department
they just open tickets. I apparently can't call the change department
either. *sigh*

So... its now 5:15PM EDT. The change department has gone home
for the evening and my domain still isn't fixed. The guy on the phone
said they'd be back on Monday and would e-mail me when its fixed.
So... I'm screwed. A lot of mail servers may hold mail for a day or two
but then mail is going to start bouncing (some may hold longer
*fingers crossed*). This sucks.

I was consoled somewhat that my ticket is flagged as "critical". Now I
know I don't let my people go home when there is critical work to do, but
everyone runs their company differently, ey?

So... can anyone provide me with a good fast solution? Not withstanding
that, can anyone suggest how not to have my domain ever hijacked again?
My faith in verisgn's ability to secure anything is a tad shaken at the
moment.

-Steve