When you abandon a web domain, make sure to tidy up behind you!
I just came across this article by Gabor Szathmari and thought I share it here. I highly recommend reading it. If you don't have time, read the summary here.
I short, when you stop paying for your domain name, it becomes available for purchase by others. If so inclined, the new owner can then attempt to hack pretty much every online account you have created using email addresses based on your old domain. They can impersonate you or former co-workers using the old email addresses. They can get former clients or suppliers to reveal confidential information. And so on.
Here are some simple steps everyone can follow to limit the risk:
- Keep paying for the old domain (grudgingly) so nobody else can get a hold of it.
- Close online accounts that are no longer needed.
- Remove the old email address from online accounts.
- Unsubscribe from email notifications that can reveal sensitive data like bills.
- Use a different email address for social media and other accounts which do not really require a business address.
- Never reuse passwords. If a hacker finds your master password, they will try it on all your other accounts.
- Enable two-factor authentication for online accounts.
- Instruct your staff to do all of this, too.
Find more advice at the end of the original article.