Registrars Enabling Global Scams: NameSilo, Webnic, and NiceNic
ICANN‑accredited registrars should reduce harm — not extend the life of criminal infrastructure. Our 2025 OSINT shows how repeated abuse inaction gives scammers time, safety, and legitimacy. Below are the evidence, a Nigeria IP snapshot, and what must change.
Introduction
Every second you read this, someone is being scammed. NameSilo, Webnic, and NiceNic don’t just sell domains — they sell the critical window criminals need. We scanned a single Nigerian IP; nearly every site was fraud, with domains registered through these companies. Multiply that by thousands of IPs worldwide.
Global scam domain database (auto‑updated)
https://github.com/phishdestroy/destroylistNigeria case study — 1 IP
https://github.com/phishdestroy/Nigerian-dignityInteractive domain list
https://phishdestroy.github.io/Nigerian-dignity/out/index.htmlFull ASN search (AS36352)
https://urlscan.io/asn/AS36352How the Model Rewards Abuse
- No effective abuse handling — domains remain live for weeks or months.
- Government‑level notices ignored unless there’s a court order.
- Selective takedowns — a few domains removed; portfolios stay intact.
- No KYC — instant registration for any purpose.
https://www.ftc.gov/system/files/ftc_gov/pdf/namesilo-wl-122024.pdf
Scale
- 30,000+ abuse references in 2025 across our feeds mentioning these registrars.
- Multiple samples for Webnic and NiceNic show >90% active scam rate.
- Nigeria IP is one snapshot — the pattern repeats globally.
Real‑World Damage
- Loss of savings via drains and fake portals.
- Victims funneled through paid ads and social channels.
- Credentials and identities sold on criminal markets.
- Medical fraud puts lives at risk.
Public Reviews Echo the Pattern
- Trustpilot — Webnic: https://www.trustpilot.com/review/webnic.cc
- Trustpilot — NiceNic: https://www.trustpilot.com/review/nicenic.net
- Sitejabber — NameSilo: https://www.sitejabber.com/reviews/namesilo.com
Reports describe ignored abuse, template replies asking for already‑supplied evidence, and ticket closures without action. It’s a time‑delay tactic: every delayed day equals more stolen funds and data.
What Would Change With Fast Action
- Tens of thousands fewer victims in 2025 alone.
- Fraud networks collapsing under rapid takedowns.
- Sharp drop in criminal ROI.
Contrast
Responsible registrars
- Full KYC and risk checks
- Abuse handled in hours/minutes
- Portfolio‑level suspension
NameSilo / Webnic / NiceNic
- Weeks of delay/inaction
- Known scammer accounts retained
- ICANN RAA 3.18 obligations bypassed
What Must Happen
- ICANN Compliance audits for repeated violations.
- Full KYC for all registrations and resellers.
- Portfolio‑level suspensions upon confirmed abuse.
- Industry‑wide ban list for repeat abusers.
Sources & Evidence
- Global scam domain database: https://github.com/phishdestroy/destroylist
- Nigeria case study: https://github.com/phishdestroy/Nigerian-dignity
- Interactive list: https://phishdestroy.github.io/Nigerian-dignity/out/index.html
- ASN scan results: https://urlscan.io/asn/AS36352
- FTC complaint: https://www.ftc.gov/system/files/ftc_gov/pdf/namesilo-wl-122024.pdf
Conclusion
NameSilo, Webnic, and NiceNic are not neutral. Their registrar abuse response failures and ICANN compliance failures keep criminal infrastructure online. The Nigeria IP shows the mechanism, but it's only a snapshot. Effective domain abuse reporting and attack surface management require registrars to act within hours — until then, scams will continue to scale on their rails.