How Box launched in 2005 on Box.net because Box.com was taken, pivoted from consumer storage to the enterprise, and in 2011 paid Digimedia close to $1 million for the exact-match Box.com — a .net-to-.com upgrade that landed right as the company became simply "Box."

How Buffer launched in 2010 on BufferApp.com because Buffer.com was taken, then spent 624 days acquiring the exact-match domain — even showing the seller its bank balance — and why a company famous for radical transparency stayed quiet on the one number everyone wanted: the price.

How Ctrip, China's largest online travel agency, acquired the premium Trip.com domain in 2017 from a startup called Gogobot, relaunched its global brand around it, and in 2019 renamed the entire parent company Trip.com Group to expand internationally.

How the pioneering social-bookmarking site launched in 2003 as the famous domain hack "del.icio.us," why those dots became a permanent tax on every mention, and how Yahoo moved it to the cleaner Delicious.com in 2008.

How Discord launched in 2015 on DiscordApp.com because Discord.com was taken, quietly bought the bare word, and in 2020 made discord.com its primary home — partly for brand cleanliness, partly because the "discordapp.com" vs "discord.com" split was a gift to phishers and malware crews.

How Facebook, Inc. became Meta in October 2021, why Meta.com was already a Zuckerberg-related asset forwarding from a science search engine, and how a separate $60M deal bought the "Meta" name from a Sioux Falls bank — while the Facebook app kept Facebook.com.

How Instagram launched in 2010 on the instagr.am domain hack — borrowing Armenia's .am ccTLD to spell its own name — then paid $100,000 to consolidate on Instagram.com, and what the tradeoffs of a clever ccTLD hack teach founders.

How Jamba Juice spent 29 years explaining itself with the word "Juice," why it dropped that word in 2019 to become simply "Jamba," and the quiet advantage almost no one noticed: the company had owned the exact-match Jamba.com since the 1990s.

How Massdrop spent seven years building an enthusiast group-buying community, then rebranded to Drop in 2019 — quietly acquiring the premium Drop.com domain (asking price once $800,000) before the rename, and why dropping "Mass" mattered.

How the crypto-card startup Monaco rebranded to Crypto.com in 2018 by buying the ultra-premium Crypto.com domain — registered in 1993 by cryptographer Matt Blaze, who refused to sell for 25 years — in a deal experts valued at up to $10 million.

How a 2011 pet startup launched as "Mr. Chewy" on MrChewy.com, dropped the "Mr." to become Chewy on the exact-match Chewy.com, and why that one-word domain upgrade quietly became part of a brand PetSmart bought for $3.35 billion.

How Elon Musk built X.com in 1999, lost it when PayPal took his old name, bought it back in 2017 for sentimental value, and finally moved a $44B social network onto it — making Twitter.com redirect to X.com.

How Urban Compass launched in 2012 as a New York rental app on UrbanCompass.com, dropped "Urban" in its February 2015 rebrand, and upgraded to the exact-match Compass.com — a domain that had been listed at auction for $1 million — right as it set out to go national.

In September 2015, a former Google employee bought google.com through Google Domains for $12 and held administrative control of the world's most valuable domain for about a minute. The story of Sanmay Ved, the $6,006.13 bounty, and what one minute of ownership reveals about who really controls a domain.

On July 15, 2020, attackers phoned their way into Twitter, hijacked the verified accounts of Obama, Biden, Musk, Gates, Apple and Uber, and ran a Bitcoin doubling scam — netting about $118,000. A deep-dive on how control of an online identity was stolen, and what it teaches about owning a name.

In July 2024, a registrar migration from Google Domains to Squarespace turned weak default authentication into a mass attack surface. Attackers hijacked the domains of crypto and DeFi projects — Compound Finance, Celer Network, Pendle, Unstoppable Domains — and pointed them at wallet-drainer phishing sites. Here is how a "seamless" migration created hundreds of unlocked front doors, and what it teaches about registrar security and MFA.

In December 2021, attackers compromised BadgerDAO's Cloudflare account and injected one malicious script into its website front-end. The audited smart contracts were never touched — yet ~$120M walked out the door through wallet approvals users signed without knowing. A deep-dive on why the website is part of your security surface.

In September 2021, Bitcoin.org — the long-time informational home of Bitcoin run by the pseudonymous operator Cobra — was hijacked at the DNS layer and turned into a fake "double your Bitcoin" giveaway, netting scammers around $17,000 before the site was pulled offline. A Domain Mayday deep-dive into what happened, how, and what it teaches about even crypto-native sites depending on DNS.

In August 2022, Curve Finance's smart contracts were untouched — but attackers hijacked the curve.fi domain at its registrar, cloned the site, and drained roughly $570K from users. A deep-dive into the DNS attack on a DeFi front-end, and what it teaches about domain security.

In late 2018, Cisco Talos disclosed DNSpionage — a campaign later tied to Iranian interests that rewrote government DNS records, rerouted email and VPN traffic to attacker servers, and minted valid TLS certificates to stay invisible. It helped trigger the first emergency directive of its kind from the US government.

On October 21, 2016, a DDoS attack powered by the Mirai IoT botnet hit DNS provider Dyn in three waves, knocking Twitter, Netflix, Reddit, Spotify, GitHub, Airbnb and PayPal offline for hours — a Domain Mayday case study in DNS provider concentration.

In September 2017, attackers logged into Dutch security firm Fox-IT's third-party domain registrar, changed its DNS, fraudulently obtained a TLS certificate, and ran a 10-hour man-in-the-middle on client traffic — until Fox-IT caught it and published one of the most transparent post-mortems in the industry.

Between 2020 and 2022, a single threat actor group lived inside GoDaddy's infrastructure — stealing source code, exposing 1.2 million Managed WordPress customers, and intermittently redirecting customer websites to malicious sites. A deep-dive on registrar concentration risk and what it teaches about single points of failure.

In late 2014, ICANN — the body that coordinates the internet domain name system — admitted that a spear-phishing email spoofing its own domain had harvested staff credentials and handed attackers administrative access to the Centralized Zone Data System. A Domain Mayday deep-dive into how the DNS authority itself got phished, what was exposed, and why it still matters.

On February 25, 2015, Lizard Squad hijacked Lenovo.com by compromising the registrar Webnic, rerouting the world's largest PC maker's domain to a webcam slideshow and intercepting its email — days after the Superfish scandal. A Domain Mayday deep-dive on why the registrar is your real perimeter.

In January 2015, Lizard Squad hijacked the DNS of malaysiaairlines.com and replaced the airline site with a tuxedo-wearing lizard and the taunt "404 — Plane Not Found." No server was breached — the attackers simply changed where the domain pointed. A Domain Mayday deep-dive into how DNS became the airline's most exposed front door.

On April 24, 2018, attackers hijacked the internet routing for Amazon Route 53, poisoned DNS answers for myetherwallet.com, and served a phishing clone behind a self-signed certificate — draining roughly $150,000 in Ethereum. A Domain Mayday deep-dive into why DNS rides on a routing layer that trusts by default.

In January 2005, panix.com — the domain of New York's oldest commercial ISP — was fraudulently transferred to a registrar in Australia using stolen credit cards, knocking web and email offline for days. The auto-approve inter-registrar transfer rules of the era made it possible, and the cleanup reshaped domain-transfer policy.

In late January 2021, perl.com — a decades-old home of the Perl programming community — was stolen via a registrar-level account compromise, transferred through China, pointed at a malware-linked IP, and listed for $190,000. Here is how it happened, how it was recovered, and what it teaches about registrar account security.

How "Sea Turtle," a state-sponsored campaign disclosed by Cisco Talos in 2019, hijacked DNS by compromising registrars, registries, and DNS providers — redirecting governments, ministries, and energy firms to attacker servers, forging valid certificates, and even breaching a national TLD registry.

In 1995 a con man named Stephen Cohen stole sex.com from rightful owner Gary Kremen with a single forged letter to Network Solutions. The years-long fight to win it back ended in a $65 million judgment, a fugitive in Mexico, and a landmark ruling that domains are property.

In September 2021 an anonymous contractor slipped their own wallet address into SushiSwap's MISO launchpad front-end via a malicious commit, diverting 864.8 ETH (~$3M) from the Jay Pegs Auto Mart auction. A Domain Mayday deep-dive on code supply chains, front-end trust, and what it teaches about verifiable ownership.

On August 27, 2013, the Syrian Electronic Army phished a Melbourne IT reseller, rewrote the DNS records for nytimes.com and Twitter's domains, and took the New York Times offline for hours. A deep dive into how a registrar-chain weak link became a newspaper's front-door failure — and what registry locks would have changed.

How Airbnb launched in 2008 as AirBed & Breakfast on AirBedAndBreakfast.com, then shortened to Airbnb.com in 2009 to escape the literal air-mattress name and become a scalable global brand.

How Dropbox launched on GetDropbox.com because Dropbox.com was taken, fought a trademark and squatting battle, and finally bought the exact-match Dropbox.com for a reported $300,000 in cash.

How Slack launched on SlackHQ.com because someone else had Slack.com, paid a reported $60,000 to buy the exact-match domain, dropped the "HQ" — and why @SlackHQ still survives on social to this day.

How Snapchat quietly bought Snap.com from Idealab for a reported $5M in 2014, then in September 2016 renamed itself Snap Inc., "a camera company," and let the short exact-match domain carry an identity bigger than any single app.

How a 2010 cease-and-desist forced UberCab to drop "Cab," how Uber bought Uber.com from Universal Music for 2% equity worth $107K, and why that domain upgrade became one of the most consequential trades in startup history.

The best TLDs to secure for your accounting firm — from restricted .cpa to defensive .com, .net, and .org registrations that protect your brand and build client trust.

Discover the top TLDs to secure for your business, why defensive domain registration protects your brand, and how to register them the smart way.

The top 10 TLDs to secure for your e-commerce store, from .com to .shop and .store, plus a defensive registration strategy to protect your retail brand.

A practical guide to the top 10 TLDs to secure for your fashion brand, covering brand protection, retail intent, and defensive domain registration strategy.

The top 10 TLDs to secure for your law firm, including why .law is the only legal TLD restricted to verified attorneys (while .esq, .legal, .attorney, and .lawyer are open), plus a defensive strategy.

The top 10 TLDs every realtor should secure for brand protection, including .realtor eligibility rules, defensive registration tips, and where to register.

The top 10 TLDs to secure for your SaaS — from .com and .io to .app and .ai — with defensive registration tips and authoritative registry facts.

Discover the top TLDs to secure for your startup, from .com to .ai, plus a defensive registration strategy to protect your brand from typosquatters.

A practical, research-backed guide for founders naming a project, product, or company: clear it legally, make it easy to say, generate strong candidates, check it across cultures, and run the searches that matter before you commit.

.ai vs .io for your startup? Compare origins, Google SEO treatment, pricing, branding signals, and the .io Chagos question, plus a clear decision guide and FAQ.

A plain-English guide to escrow and domain escrow — what an escrow account is, how escrow works step by step in a domain sale, why it matters for avoiding fraud, traditional escrow services vs. the modern tokenized approach, and how smart contracts can replace escrow with atomic on-chain settlement.

How Tesla spent over a decade and a reported $11M to move from TeslaMotors.com to the exact-match Tesla.com, and why the domain upgrade arrived right before the company dropped "Motors" from its name.

How Facebook dropped TheFacebook.com, bought Facebook.com for $200K, later paid $8.5M for FB.com, and turned domain upgrades into brand infrastructure.

A clear 2026 guide to premium Web3 TLDs—what "Web3 TLD" really means, why tokenized ICANN extensions like .com, .ai, and .io beat blockchain-only names, and which domain extensions hold the most value.

A TLD is the part of a domain after the last dot, like .com or .io. Learn what a TLD is, the types (gTLD, ccTLD, sponsored, new gTLD, IDN), and how to choose one.

UDRP explained for domain owners and investors: the three elements a complainant must prove, the process and timeline, outcomes, UDRP vs URS vs court, and how to respond.

Why are .io domains so expensive? A clear breakdown of registry wholesale pricing, startup and tech demand, short-name scarcity, renewals, and the new Chagos sovereignty question.

A practical, seller-first checklist for pricing a domain, finding likely buyers, handling outreach, avoiding scams, and closing the transfer safely.

An honest, side-by-side look at the major domain tokenization platforms — what each one is actually good at, where they overlap, where they don't, and how to pick the one that fits how you intend to use your domains.

A practical look at how regular DNS — nameservers, A/AAAA, MX, TXT, DNSSEC, CAA — keeps working after you tokenize an ICANN domain. What changes, what doesn't, and where to point your existing DNS provider.

A guide to the news outlets, sales-data sites, and podcasts that cover the domain name industry as journalism — DomainNameWire, DNJournal, TheDomains, NameBio, DomainSherpa, CircleID, and more.

A curated list of the individual domainers, brokers, and traders whose blogs, newsletters, and Substacks are worth reading in 2026 — what each one is known for, and how they fit together.

A practical, step-by-step walkthrough for tokenizing a domain you already own — eligibility, wallets, fees, time, and what to expect on each screen. Written for owners, not protocol nerds.

How tokenized-domain marketplaces let buyers and sellers settle atomically on-chain — no escrow service, no auth codes, no five-day registrar lock. What replaces each piece of the traditional flow, and what risks shift to other layers.

What actually happens if you lose access to the wallet that holds your tokenized domain — and the operational steps to reduce the chance of getting there in the first place. Backups, multisig, hardware wallets, social recovery, and the limits of what any platform can do.

A non-advice, plain-language survey of the tax and accounting questions tokenized domain owners commonly ask — cost basis, sales, holding period, business vs personal, gifting, estates. Bring these questions to a real professional.

A platform-neutral tour of what tokenized domains are actually being used for in 2026 — DeFi lending, leasing, fractional ownership, AI agent identity, and the use cases that haven't quite landed yet.

A clear, practical comparison of tokenized ICANN domains (like a tokenized .com) and Web3-native names (like name.eth, name.crypto). When does each one work? Where do they overlap? Why do many people hold both?

A practical guide to the English-language forums and communities where domain investors actually congregate in 2026 — from NamePros and DNForum to the Twitter/X and Telegram channels that have quietly replaced them.

Tokenized domains explained in plain language. Learn what a tokenized domain is, how to tokenize a domain, how domain tokenization works, and how tokenized domain ownership differs from traditional domains and Web3 names like ENS.

Zero-knowledge proofs come in three flavors—perfect, statistical, and computational—and the difference matters more than most engineering discussions admit. This post explains each in plain language, why nearly every production ZK system in 2026 is computational, and what that buys and costs.

A practical walk-through of the five ways attackers actually take over domains in the real world—social engineering, registrar account compromise, DNS provider takeover, NS hijacks, and expired-domain reclamation—and the specific controls that block each one.

Multisignature wallets are widely treated as the default secure custody pattern in crypto, but the answer to "do they actually improve security?" depends entirely on the threat model. This post walks through what multisig defeats, what it does not, and where it can make things worse.

DNS over HTTPS (DoH) protects user privacy by encrypting DNS queries inside HTTPS. Enterprise split-horizon DNS relies on the network being able to see those queries. The collision between the two is reshaping how corporate networks, browsers, and operating systems handle name resolution.

A look at which country-code top-level domains command the largest share of registrations worldwide, why the leaders differ from what most people expect, and what the volume numbers tell us about how the internet is actually used.

A multi-tenant router that lets you integrate x402 once and route requests by policy and live signals, without pushing routing logic into your app.

UCP is Google’s bid to power agent-native commerce, letting AI assistants shop and check out across the open web.

Discover how stablecoins bridge the gap between traditional fiat and cryptocurrency, offering stability for Web3 transactions and domain investing.

A conversation-driven exploration of Henri Stern’s journey building Privy, focusing on usability, customer-led product development, and the shift from crypto complexity to human-centered design.

A registrar/DNS‑operations perspective on the October 20, 2025 AWS incident, how DNS actually works, why this failure propagated so widely, and what resilient internet teams can do about it.

A clear explainer on xStocks—tokenized stocks (tokenized equities) on Solana, issued by Backed Finance. Learn what xStocks are, how they work, how they differ from traditional stocks, the risks, and how they fit the broader real-world-asset (RWA) tokenization trend that tokenized domains are part of.

This article explains why traditional domains should be tokenized on-chain and highlights the benefits such as clearer ownership, financial composability, and freer, faster trading.

Master domain investing with our comprehensive guide to essential domain terminology. From basic concepts to advanced trading strategies, learn the language of domain professionals.

A domain name is the foundation of your online presence.

A vision statement of D3Serve — why digitizing trust, much like the digitization of information before it, promises a leap in productivity, loss-less precision, lower cost, and automation.