Donuts Inc. Makes $57 Million Bid for Domains, Inciting Fears of Spam and Fraud

You may want to have a muffin with your morning cup of java today. Donuts, as delicious as they are, can be bad for you, and according to some industry watchdogs and Internet groups, it’s not the sweet doughy treat that you need to worry about right now. Donuts, Inc., a group of investors with experience in the domain name space, has made a bid – a huge one – for a barrel of new generic top level domains (gTLDs), and according to the Washington Post and other media outlets, it has some people worried that the play could lead to the abuses normally associated with spam and fraudulent activities.

It’s no secret that the Internet is about to explode into a whole new universe of gTLDs, dismissing with the modest 22 (not including countries and regional TLDs) TLDs that have made life so ridiculously simple these past twenty years. In fact, the Internet Corporation for Assigned Names and Numbers (ICANN) is sitting on about 2,000 applications for new gTLDs, and as one might have expected, sitting at the top of the hill of applicants are the likes of Amazon, looking to sew up all TLDs with the mere mention of .books, Google, which wants you to .buy, .buy, .buy, and yes, the insurance companies want a piece too, with AllState bidding for everything that ends with .carinsurance.

But when an unknown company which appears to do nothing makes a bid for 307 gTLDs at the bargain basement price of $57 million, there’s a skeptical side to the Internet that might wonder at the end game of a group of self-described “industry veterans with extensive experience in registry and registrar operations and industry governance.” That statement came from Chris Pacetti, general partner at Austin Ventures, in what seems to be a press-release article in, and if you surf on over to the Investors page at Donuts, Inc., it doesn’t take long to notice that the first investor listed at Donuts, Inc. is Austin Ventures.

Fair enough, though. The Internet is unashamedly a great place to get wealthy. Just ask the Gates’, Bezos’, and Zuckerbergs of the world. There’s absolutely nothing wrong with free market capitalism and the mating of dollars with other dollars to make little baby dollars. But, according to the Washington Post, Internet advocates have thrown the red flag on Donuts, Inc., which they warn has “close ties to a company with a well-documented history of providing services to spammers and other perpetrators of Internet abuses.” The fallout, the watchdogs warn, could be a new era of abuses using the newly-acquired gTLDs.

“Should Donuts come to control hundreds of new domains, including ‘.doctor,’ ‘.financial’ and ‘.school,’” the critics say, “consumers could see a spike in online misbehavior.”

David E. Weslow, a Washington, D.C.-based lawyer who represents major corporations, was quoted in the Post article, warning that:

“If the allegations concerning [Donuts, Inc.] turn out to be true, these 300 top-level domains could be the Wild West for fraud and abuse.”

Remembering that these are just allegations at this point, there’s a bigger issue at play here, and Donuts, Inc. is merely one of the…ehm…players. The World Wide Web has been comfortably coexisting with the world for twenty years or so, and it’s been a nice quiet place, for the most part, with its 22 TLDs. This time next year, however, there could be more than 1,500 TLDs. Donuts, Inc.’s significant and baffling investment only underscores what security professionals have been warning of for years.

According to the Post:

“Donuts, Inc. was quick to respond to the criticism, stating that they are qualified to use the new domains responsibly. “We and our very smart investors would not have spent almost $57 million if we had any concerns that we were not eligible,” said Jonathon Nevett, a Rockville-based lawyer who is one of four co-founders of Donuts.””

New domains – and not just a few, now – exploding on the spam filters and mostly uneducated users of the world could have disastrous effects. Phishing could take on a whole new dimension. Remember that there was a time not long ago that a .COM or .ORG TLD suggested to many a user that the domain was legitimate, when we all know that wasn’t the case at all. Regardless of its intent, Donuts, Inc.’s $57 million bid wasn’t hard to miss. But what about organizations – the ones we don’t know of – that have become part of those 2,000 or so applications to ICANN?

You can’t unring the bell, once it’s been rung.

Written by Malcolm James


  1. Mason Cole · October 4, 2012


    Donuts is well aware of the discussion of our participation in ICANN’s gTLD expansion. It’s remarkable that there’s been so much coverage of an error-filled letter apparently assumed to be true, and almost no effort to verify the actual facts with Donuts. If you’re interested, I invite you to contact us and we’ll put them on the table for you.

    Also, perhaps it would be interesting to discover who’s hiding behind the lawyers producing this letter. Public attacks are sometimes de rigueur for companies with ambitious plans, but hiring someone to do it for you is different from bringing your concerns forward for a reasoned discussion.

    For the record, Donuts is prepare to run safe and secure gTLD registries. We are not interested in allowing fraud or abusive behavior, and in our applications detail precisely what we will do to prevent it, or to address it if something were to happen. Our list of protections goes well above those mandated by ICANN, and we intend to continue to consult with law enforcement (as we have already) and others to be sure Donuts’ gTLDs are secure and stable.

    The work we’re doing now leading up to the launch of new gTLDs is hardly indicative of a company that does nothing, you can be assured.

  2. Malcolm James · October 5, 2012


    Thanks for weighing in on this. It’s reassuring to hear that you want to improve the Internet’s footprint. It would be helpful to get your perspective on Donut’s plans and perhaps put to rest some of the concerns expressed by the unnamed groups referenced in the Post article.

  3. Jessica Craig · October 5, 2012

    It is just plain wrong to allow a company to have monopoly over domains. ICANN shouldn’t allow this or are they interested only in the money they will get? Also, I find it ridiculous to justify this shopping spree with fears of spam.

  4. Mason Cole · October 6, 2012

    Sure, please contact me at the email address attached to this comment. Thanks.

    It would have been better for the anonymous party to have its facts straight, have reviewed the protections outlined in our applications, and conducted him or herself reasonably. But we’re happy to provide the actual facts nonetheless.

Leave A Reply