Security breach led to the unauthorized transfer of IndiraIVF.com before the company’s planned IPO.
A Uniform Domain Name Dispute Resolution (UDRP) panelist has ordered the domain name IndiraIVF.com to be transferred back to Indira IVF Hospital Pvt Ltd after it was stolen late last year.
Indira IVF, India’s largest fertility services provider, is preparing for an initial public offering (IPO) later this year.
It discovered in January that its domain name was missing from its control panel at Global IT Providers, a domain reseller.
An investigation revealed a security breach: someone had accessed the registrar account without authorization in October 2024 and transferred the domain.
Despite the theft, the domain continued to resolve to Indira IVF’s official website, delaying detection of the unauthorized transfer for a few months.
Losing control of its primary domain name posed a significant risk ahead of its IPO.
The registrant responded to the dispute, claiming he purchased the domain via a Telegram transaction after finding it advertised in a Facebook group. He said he was interested in the domain due to its high traffic.
Panelist Darius Sauliūnas wrote:
The Respondent’s claim that the disputed domain name was allegedly purchased via a Facebook group does not negate the fact that this domain name was acquired as a result of the Complainant’s domain names‘ management account being previously hacked. Based on the general legal principle that no right can arise from illegality (ex injuria jus non oritur), the Respondent’s explanation cannot absolve him of liability for the unlawful acquisition of the disputed domain name.
The panelist ordered the domain transferred back to Indira IVF.
Leave a Comment