#(CF Went Ghost): Purchase Fraud?! 😱

Hey!
I recently bought a domain name via CloudFlare Registerer using my Cash App. The Registration went through successfully. As I started applying to enrol in some of the Free Products:Features —I then got an email from a Staff Member named Charlie. The email only said “Hello,” —I’ve been having Internet Connection Issues & when I finally got a connection I seen Charlie emailed me again which went to my Junk:Spam. It said that I had 24 hours to verify my identity as a “suspected” “purchase fraud”.

In the email, it said if I didn’t respond to verify my identity in 24 hours (that timeframe is really small & ridiculous) that my Domain & Upgrades will be discontinued (my service will be suspended). The email & the website all says this won’t impact my performance. So, I went to check my domain name & it says that my host can not be found & they’re not offering no SSL/TLS Certificates to my connecting clients.

Instead, I personally (my viewers don’t) get a white page that says my IP Address will be exposed & iCloud’s Private Relay won’t help protect my IP Address.

I see there’s similar situations in regards of the Status Pages.

Is this happening because I’m a victim of Identity Theft?

I contacted my Cash App for more information about what’s going on. They said they have no idea & it’s only on Cloudflare’s end.

So, what’s going to happen?
I see like a Return Credit Invoice for the domain name in my Billing Invoices. No errors, no messages, no request for my information or anything.

Am I going to lose my Domain Name?
Is there a way I can solve this & restore service asap?

Thanks! 🙏😢

Do you have more information about the email? Did it come from Cloudflare Trust & Safety?

Yes it did. It was exactly that email.

If it was from Cloudflare Trust & Safety (I think it comes from abusereply@?) then it's likely legitimate and is part of a manual anti-fraud check.
This means that they think its likely the transaction is fraud (they could be wrong!) and they want to verify your ID before you can keep the domain. If you don't do that the purchase should be reverted. You can reply to the email with any further questions.

I did reply. You think they’ll be willing to help even though I missed the 24 hour timeframe? My email was kind of short but straight to the point. It’s my identity. My information. My money & my domain.

Do you have any advice? The Status page seems like they’re not really answering Tickets at the moment. I could be out of service for a while.

I deeply need help. This domain name is the sole solid property of my brand I’ve been building everyday for 4 years. This hurts a lot really deeply. 😔

Check out ICANN's (or whoever controls the base domain you bought the domain from)

That would be Cloudflare, I purchased it through their Registry System & my service is completely offline. 😔

You think they’ll be willing to help even though I missed the 24 hour timeframe?
From my experience yes, but it needs to go through Stripe verification so they likely will just send you a new link.

The Status page seems like they’re not really answering Tickets at the moment. I could be out of service for a while.
Support and Trust & Safety are very different systems, any changes or struggles with Support don't affect abusereply.

I deeply need help.
Fully understand that but nobody in this community has any sway over what T&S do unfortunately.

I didn't think they suspended domains during these checks but I've been wrong about their proceess before, so maybe they do. Sorry to hear that, wish I could help more.

I really appreciate your help, @midnight snow!

I’m very new to this Discord, I never used it before. Ran into it while looking into the issues. Is there any Staff we could mention or get to help out pushing this forward or would that not be allowed?

So, from your experience— even though they Credited my funds back to me in my invoices; it’ll still let me redeem it once I pass the verification if they send a new link?

If the funds were refunded then you may have to purchase the domain again, but yes the action isn't permanent you should be able to ask to verify anew

So, I wouldn’t have to wait an entire year for it to expire to purchase it again?

I don't think so, but I advise asking on the T&S ticket

Is there any Staff we could mention or get to help out pushing this forward or would that not be allowed?
We have ways of escalating issues for many issues relating to Support, but Trust & Safety operate their own department that doesn't accept outside escalations, so there isn't anything we can do there. Sorry.

I completely understand.

I guess I just have to wait for their response & try to catch my Junk:Spam when they do.

Again, thank you for your help. It means a lot to me. I really appreciate it. 🫂

No, cloudflare contracts with ICANN to be a registrar and issue domains for, say "com"

but, ultimately: everybody under ICANN has to follow the rules

@midnight snow What's your opinion on setting somebody like namecheap up to auto-snipe the domain if its released? I'm not familar with the exact process here, but I know when I let domains expire they almost always get picked up by somebody

There wouldn't be any harm in it

It wouldn't be cheap, but it's a lot easier than going through ICANN

well, less heartache and stress

so like if you want to do that sure why not, go for it

all I know is it exists, but I'll try to Guide CR Cryptic to good info

I've had to go the ICANN route once and it was a nightmare, as I was a minor at the time

I still dearly miss siforge.com 😦

@short crescent https://www.namecheap.com/support/knowledgebase/article.aspx/10522/15/auctions-bidding-guide/

there's a starting point

Thanks! 🙏

I didn’t know that.

typically, when a domain is allowed to expire there's what's called a "Redemption Period", where the registrar still holds the domain but typically want an arm and a leg to give it back (say its a $10 .com, I think godaddy wants $100 "service fee" for pulling it out of redemption)

Note: I don't think anything here is relevant except finding somebody reputable to try and nail the auction if it goes that way

and use a proper card. not cashapp or paypal cards. and HECK NO to that company that does the "bad/no credit" credit cards

Oooh. This would be scary. I tried the B12 website for my other website & they ended up registering my domain name then started auctions at $10,000. 😭

I’m not that dang rich.

So, Cloudflare most likely going to keep my domain registered all year to auction it off? 😭

Got me screaming over here. My heart is broken. I really loved & trusted Cloudflare. That would hurt so much. 😭

no

I've fed you a red haering

lemmie purge it

Chime is pretty solid. I use them but Cash App for online. Think that Credit Card would be more reputable?

no, Just NO to chime

that's exactly the one to NOT use

😭 They’re all I got, family. What do I do?

(why are half my messages showing as red?)

No idea. They’re white/grey on my end.

means they failed to send, discord is having some issues atm. those msgs should have a button on hover/rightclick to resend

there should be a "let me look" above my question. It's mostly rhetorical- they're blocked/not sent yet.
and, confirming- but I'd use transunion to have enough money to cover the purchase already with Cloudflare

I have no idea 😐 google is flooded with "load balance" 🤣 Erisa?

Is it just me or does it seem like a lot of these big companies are having Service Issues this week? 🤨

More than usual.

Apologies, my phone died. 😅

oh 😐 Union Pay isn't what I thought (A competitor to Transunion)

TransUnion is evil. They’re the ones that got my identity stolen the most. 😨

Maybe that’s why I keep having this issue?

I'm trying not to pry, but what's preventing you from getting a "real" credit card?

bad credit?

tendency to overuse the "credit" part of the card? 😛

Eh, a bad relationship. Nope.

I had a 780 when I got with my ex, she cheated then when I paid all my stuff off, she ran them up & ruined my credit so I just said fuxk it & then my identity kept getting stolen cause Data Breaches like TransUnion.

So, I only stick to Chime cause they got me back at 786.

oh

well

this isn't the place

Hah. Nah, I’m really frugal. 😂

but that's pretty damn easy to fix

It just takes 3 weeks+

Hell yeah, it all stopped when I enforced the Credit Freeze. They kept letting people use my Credit without using my Verification Method so I got in their ass & now it doesn’t happen no more. 😂

and do yourself a favor, log into one of the credit bueros and lock your "account." they'll try everything in the book to make you pay- but, by law, its free.

yup

Yep. I utilised all the free. I ain’t paying someone who got my identity stolen. Ya know? 😂

I had a rent-to-own store of known dubious nature (preditory, abusive, gets around the collections laws by their collections agency being a subsidiary

start calling, The location is 600 miles away.

let me reread the top real quick

🤣 I like the way you think.

LexisNexis was doing the same tactics & had me mixed with someone else then went slandering on my identity because of someone else’s identity.

It’s okay though, somewhere along the line someone reported it to the Feds for me so the Government knows I’m a victim.

Maybe that’s why I keep having these issues. 🤷‍♂️

dunno, but looks like the best you can do is have a primary and secondary in place in the billing manager

"nstead, I personally (my viewers don’t) get a white page that says my IP Address will be exposed & iCloud’s Private Relay won’t help protect my IP Address. "

this however, is sus. I'll be back in a bit

Meaning I should try to implore using someone else who’s not a victim to fill this void for me?

Okay, thanks for all your help, suggestions and advice! 🫂

NO. doing nothing is better than tieing in a card from somebody else at this point

grain of salt, not the expert here.

🤔 So MoneyGram seems to be my only choice?

which iOS/iPad OS version? btw, I'm not going to bother looking into iCloud Private relay- but you should check everything for "Profiles" (maybe they're called something else now.)

ROFL

well: https://support.apple.com/guide/iphone/install-or-remove-configuration-profiles-iph6c493b19/ios

basically: if it doesn't have your employer's, financier's, or cellular provider's name on it and their support confirms it's supposed to be there, take some screenshots and uninstall it

I use VPNs 24/7. So, I got two Configurator Profiles on my Device.

I’ve used these VPNs forever.

😂 Probably using Cloudflare rn. 😂

doubtful for apple

BGP or major fiber route outage

but "configuration profiles" are, by orders of magnitude, the most common vector for a bad actor doing something on iOS/ipadOS

Oh. I know about that one for sure. VPN360 hacked my apps & put ADs in apps that don’t display ADs then when I reported it they blocked me so I left a Review on their app & they legit replied like “Hah. You’ve been hacked!” like— whaaa? 💀 They in more trouble— than me because they hacked my device. They’re a criminal company. I was just a user they acted criminal towards. 😂

Apple was claiming they wasn’t even aware they like give “Backdoor Access” to malicious Configurator actors. 🤦‍♂️

It requires the user to approve the profile.

ahahahaha

https://www.cloudflarestatus.com/

Yeah, I seen all that crap. 😔

<@&887014516909555745> I really need your help. 😭

@midnight snow, Cloudflare just refunded me my money. I still haven’t heard from the Trust & Safety Team either.

What’s going to happen now? 😔

Do a whois check on the domain to see if its still registered? If its not, register it at another registrar

It still registered by Cloudflare.

As was mentioned previously there isn't anything I (or anyone else in this server) can do to speed up any part of this process, so it's a case of you getting ahold of trust & safety, we can't do that for you

You don’t think they’ll keep it registered all year?

Yeah, no— I understand that. I was just curious if you knew what happens now that I got my refund. If you don’t know, it’s okay. Just asking cause it seemed like you’ve probably went through it before too. This crap sucks.

I wouldnt think so, domains are usually cancelled within a week or so in these cases. But, I've not directly been in this situation so I'm afraid its just speculation on my part

Ok. Understood. Thank you for your help! :)))

The reason I know some parts about how it used to work is 1) I've spoken to people who went through it, and 2) I used to work for Cloudflare, but don't anymore

Must’ve been pretty nice. Cloudflare always been really great. Why’d you leave?

Not something I'm going to share sorry, but it was nice yeah

That’s fine. I appreciate your help regardless.