Domain Names represent the public identity of most organizations. If an attacker is able to "steal" your domain name in some way, the attacker could use your own domain to set up fake websites, emails servers, and much more. A DNS Registry Lock helps to prevent this from occurring and is simple and free to implement.
Domain Hijacking, as it's called, usually occurs from social engineering attacks. An attacker will gain access to your email or other personal data and attempt to trick your domain registrar into transferring ownership rights to another account or provider.
To prevent this, domain registrars offer a "locking" procedure that requires additional verification steps. While different registrars have their own procedures, this can range from toggling an option in your provider control panel to a phone call or physical postal mail verification. Most registrars automatically lock all domains when they are first purchased.
It's essential to ensure that you enable Multi-Factor Authentication with your DNS provider to prevent locks from being removed. Like other services, passwords and be stolen and guessed. Our number-one defense against that is enabling Multi-Factor Authentication.
To check if your domain is locked, type your domain name in at whois.net and look for the lines starting with "Domain Status" and ensure they are all prohibited. For example:
If you don't see the lines above, contact your registrar for details on how to lock your domain to prevent transfers immediately. As always, Coalition is here to help you on your way. Please reach out to us for additional information!