Domain Scams UK
Renewal Fraud

Protecting Your Domain from Expiration Scams

2026-03-03
Protecting Your Domain from Expiration Scams

One of the most successful domain scams targets domain owners who aren't paying close attention to their renewal dates. Scammers send official-looking renewal notices, attempting to collect payment that should go to your actual registrar. This scam costs UK businesses thousands annually.

How Expiration Scams Work

When a domain is nearing expiration, legitimate registrars send renewal reminders. Scammers monitor expiring domains and send similar-looking emails, often arriving around the same time as official notices. They create invoices with official-looking logos and branding, requesting payment to a scammer-controlled account.

Some scammers use misleading company names like "Domain Registry Services" or "International Domain Registry" that sound official but aren't your actual registrar. The invoice might claim you owe additional fees or penalties for late renewal.

A particularly devious variant involves scammers registering domains very similar to your registrar's name, then sending emails from those addresses. An email from "[email protected]" (note the misspelling) might fool someone scanning quickly.

Why This Works

Domain owners are often busy and don't carefully examine renewal notices. They see an invoice for a domain they own and pay without verifying the sender. By the time they realise they've been scammed, the money is gone and their domain still needs renewing with their actual registrar.

Protecting Yourself

  • Set calendar reminders for domain expirations well in advance
  • Enable auto-renewal on your domain account so it renews automatically
  • Know your actual registrar and their official contact details
  • Always verify payment recipients before sending money
  • Go directly to your registrar's website rather than clicking email links
  • Contact your registrar directly if you receive unexpected renewal notices
  • Use two-factor authentication to prevent unauthorised account changes

What to Do If You're Targeted

If you receive a suspicious renewal notice, don't panic. Log into your actual registrar account directly (by typing the URL yourself) to check your domain status. If your domain is fine and not expiring soon, the email is definitely a scam. Report it to your registrar's abuse team.

If you accidentally paid a scammer, contact your bank or payment provider immediately. They may be able to reverse the transaction if you act quickly. Report the scam to Action Fraud (actionfraud.police.uk), the UK's official fraud reporting service.

Domain expiration scams are entirely preventable through awareness and proactive management. Set up auto-renewal, use strong security practices, and you'll never fall victim to this common fraud.