Be thoughtful when retiring old domain names

4 Pine_Mushroom 2 7/28/2025, 9:06:39 PM

This is a bit of a sob story, and I’m mainly posting hoping for some advice or assistance, but even if my situation is hopeless, maybe sharing the experience can prevent something similar from happening to someone else: Some months ago I let a long unused domain name of mine expire(williamsfamilyfungi.com). I used it for an email address for a number of years, but over time I moved everything to another domain which also hosted my website(michiganmushrooms.net). Unfortunately I neglected to change the contact information for a few critical accounts away from williamsfamilyfungi.com… and wouldn’t you know it; as soon as it expired someone grabbed it up and started a new email with my old address(christopher@williamsfamilyfungi.com). Then the real trouble started: they used my old email to change the password on my michiganmushrooms.net domain, locking me out of my email and GoDaddy account. Unfortunately they did this just before that domain was set to expire and by the time GoDaddy was able to confirm I’d been hacked and get me back into my account(this took several months for some reason): the domain was gone. Now it would seem they started a new email again with my old address(christopher@michiganmushrooms.net) and unfortunately that email is connected to many important accounts that I am now totally locked out of… I realize in both cases the domains were expired and re-purchased legitimately enough, but to re-start an email address to impersonate someone is pretty shady. GoDaddy said I’m out of luck to get back since it wasn’t technically ‘stolen’, but it sure feels like I’ve been robbed. My main concern now is what kind of havoc they might be able to do impersonating me; I have no way of knowing what kind of accounts they could be opening up… TLDR: be thoughtful about retiring old domains. Any advice appreciated!

Comments (2)

Bender · 22h ago

Reach out to every company fraud department that domain was used with and let them know the domain expired and is now being actively abused by criminals. There are whois history sites that can show you used to be in control of that domain.

Reset all of your authentication details with all financial institutions, ideally in person after showing them your state ID and let them know to block anything related to that domain. Have them treat your debit cards as stolen and issue new ones with entirely new numbers. Consider temporarily freezing your credit with the 3 credit agencies.

If the attackers are causing financial harm consult with an attorney and also with the FBI cybercrime division if you are in the US. [1] Log all details that you can including dates, times, events. Just the facts. Keep records of your communication with lawyers and the FBI so that you can show you were performing due diligence in for future related incidents.

[1] - https://www.ic3.gov/

ckrapu · 22h ago

This happened to me when I decommissioned an App Service instance on Azure.

I totally forgot that it has a readable (I.e. guessable domain name) because AWS’ equivalent service doesn’t. I also had a company subdomain pointing to it so someone got to put up a malicious page on our domain for a day :(

PAX Markets (YC W25) is hiring a founding principal hardware (RTL) engineer (ycombinator.com)

Sendblue (YC S23) is hiring senior engineers (ycombinator.com)

Thunder Compute (YC S24) Is Hiring a C++ Systems Engineer (ycombinator.com)

Optery (YC W22) Is Hiring in Engineering, Legal, Sales, Marketing (U.S., Latam) (optery.com)

QuestDB (YC S20) Is Hiring a Technical Content Lead (questdb.com)

Depot (YC W23) Is Hiring a Technical Content Writer (Remote) (ycombinator.com)

Firebender (YC W24) Is Hiring (ycombinator.com)

Better Auth (YC X25) Is Hiring (ycombinator.com)

Kapa.ai (YC S23) is hiring a software engineers (EU remote) (ycombinator.com)

Spice Data (YC S19) Is Hiring a Product Associate (New Grad) (ycombinator.com)

Extend (YC W23) is hiring engineers to build SOTA document processing (jobs.ashbyhq.com)

Piramidal (YC W24) is hiring a full stack engineer (ycombinator.com)

Mango Health (YC W24) Is Hiring (ycombinator.com)

Resolve (YC W15) Is Hiring an Operations and Billing Lead for Construction VR

Arva AI (YC S24) Is Hiring an AI Research Engineer (London, UK) (arva.ai)

Rejoy Health (YC W21) Is Hiring (ycombinator.com)

Weave (YC W25) is hiring an AI engineer (ycombinator.com)

CoinTracker (YC W18) is hiring to solve crypto taxes and accounting (remote)

Crimson (YC X25) is hiring founding engineers in London (ycombinator.com)

Martin (YC S23) Is Hiring Founding Engineers to Build a Better Siri (ycombinator.com)

Meticulous (YC S21) is hiring in UK to redefine software dev (tinyurl.com)

Infisical (YC W23) Is Hiring DevRel Engineers (ycombinator.com)

Sieve (YC X25) is hiring researchers to build large video datasets for AI labs (sievedata.com)

Activeloop (YC S18) Is Hiring AI Search and Python Back End Engineers(Onsite,MV) (careers.activeloop.ai)

Attimet (YC F24) – Quant Trading Research Lab – Is Hiring Founding Researcher (ycombinator.com)

Metriport (YC S22) is hiring engineers to improve healthcare data exchange (ycombinator.com)

Telli (YC F24) Is Hiring Engineers [On-Site Berlin] (hi.telli.com)

Continue (YC S23) is hiring software engineers in San Francisco (ycombinator.com)

UpCodes (YC S17) is hiring a Head of Ops to automate construction compliance (up.codes)

Enhanced Radar (YC W25) is hiring a founding engineer

Converge (YC S23) well-capitalized New York startup seeks product developers (runconverge.com)

Be thoughtful when retiring old domain names

Comments (2)