Handling Fake Domains in Out-of-Mandate Cases

What to do if a fake domain is reported by a client out of mandate

Problem

Access Now Helpline, as a responsible CERT, is willing to responsibly report fake domain cases with commercial involvement. However, commercial entities and other types of requestors are not under Access Now’s mandate, and therefore the amount of resources to handle this type of cases should be as limited as possible.

Solution

• Send the requestor an email with instructions on how to report the domain based on the template in Article #217: Reporting a Domain Name in Out-of-Mandate Cases.

Optional steps:

• If the domain is a country-code top level domain, contact the local CERT.

• If the domain is a generic top level domain, contact the local CERT of the country where the commercial entity is registered.

• If there is no local CERT, report the malicious activity directly to the registrar responsible for the domain.

A list of CERTs per country can be found here.

Comments

For cases of fake domains within mandate, please see Article #342: Handling of Fake Domains

Related Articles

• Article #217: Reporting a Domain Name in Out-of-Mandate Cases
• Article #342: Handling of Fake Domains