>Home >Unsolicited Offers >Specific Incidents >Report Fraud >FAQ's Current Known Incidents 1) CIRA Issues Statement Warning .CA Registrants of Phishing 2) Domain Registry of America/Canada CIRA Issues Statement Warning .CA Registrants of Phishing We want to bring to your attention the following announcement from CIRA. Ottawa, December 13, 2004 - The Canadian Internet Registration Authority (CIRA) is advising dot-ca domain registrants (holders of dot-ca domain names) NOT TO RESPOND OR REPLY TO ANY EMAILS requesting verification of CIRA User Account Numbers and Passwords. CIRA has learned that an unknown party is attempting to obtain CIRA User Account Numbers and Passwords from dot-ca registrants by sending MISLEADING EMAIL NOTICES that appear to originate from CIRA. These misleading emails request that CIRA User Account Numbers and Passwords be provided to validate registrant information and prevent domain name suspension (inactivation). The emails originate from COMPLIANCE@CIRA.CC. CIRA's compliance email address is COMPLIANCE@CIRA.CA. If you have replied to an email requesting your CIRA User Account Number and Password, and have included your CIRA User Account Number and Password in your reply, PLEASE CONTACT YOUR REGISTRAR IMMEDIATELY to request a new CIRA User Account Number and Password. If you do not know the name of your registrar, you may obtain it by entering your dot-ca domain name in the WHOIS field at http://whois.cira.ca/public. If you have received an email requesting your CIRA User Account Number and Password, please forward a copy of the email to security-advisory@cira.ca. Your cooperation with this matter will help CIRA estimate the number of misleading notices that have been sent to unsuspecting dot-ca domain name holders. A complete copy of the press release can be found at http://www.cira.ca/news-releases/139.html Back to Top Domain Registry of America/Canada A company calling itself "Domain Registry of Canada" or "Domain Registry of America" is targeting Canadianweb Solutions customers to transfer their domains by renewal. They obtained our customers' contact information through the publicly accessible WHOIS database, and are sending renewal notices through regular mail in an envelope and on stationary intentionally designed to appear to be an official government notice. It has been brought to our attention that these letters have been causing a great deal of confusion among our customers and have in fact resulted in lost business. We hope to clear up any confusion with this section of our website dedicated to combating deceptive marketing. You absolutely SHOULD NOT remit any payments to "Domain Registry of Canada"/"Domain Registry of America" in order to renew your domain, as Canadianweb Solutions is your official domain name provider. If you have already submitted payment to this company, we suggest contacting your bank, credit card company or provider regarding your options of having payment stopped or reversed. In an effort to combat this unfair and illegal targeting of our business using publicly accessible information about your domain name registration, we're asking for your help. Should you receive a solicitation from ANY company regarding the renewal of your domain registration, please: Report any incidents to us directly at fraudsquad@canadianweb.com. Send us a sample of any solictiation letters as evidence. Click here for our address. Report the incident of solicitation via: fraudsquad@canadianweb.com We regret that this notice is necessary, but feel it is important to notify our clients of this issue. If you have any questions regarding this or any other issue, please do not hesitate to contact us at domainsupport@canadianweb.com. Back to Top