Chose your color

Frequently visited

Frequently asked questions

  • I am looking for a domain name registrant. Where can I look it up?

    The Whois is an easy-to-use tool for checking the availability of a .nl domain name. If the domain name is already taken, you can see who has registered it.

    On the page looking up a domain name you will find more information about what a domain name is, how the Whois works and how the privacy of personal data is protected. Alternatively, you can go straight to look for a domain name via the Whois.

  • I would like to transfer my domain name to another registrar. What is the procedure?

    To get your domain name transferred, you need the token (unique ID number) for your domain name. Your existing registrar has the token and is obliged to give it to you within five days, if you ask for it. The procedure for changing your registrar is described on the page transferring your domain name.

  • The details registered about me/my company are incorrect or out of date. How can I get them updated?

    To update the contact details associated with your domain name, you need to contact your registrar. Read more about updating contact details.

  • Why is my domain name in quarantine?

    When a domain name is cancelled, we aren't told the reason, so we can't tell you. You'll need to ask your registrar. The advantage of quarantine is that, if a name's cancelled by mistake, you can always get it back.

    One common reason is that the contract between you and your registrar says you've got to renew the registration every year. If you haven't set up automatic renewal and you don't renew manually, the registration will expire.

  • Ik heb een klacht over mijn provider/registrar. Kan ik daarvoor bij SIDN terecht?

    Wanneer je een klacht hebt over of een geschil met je registrar dan zijn er verschillende mogelijkheden om tot een oplossing te komen. Hierover lees je meer op pagina klacht over registrar. SIDN heeft geen formele klachtenprocedure voor het behandelen van een klacht over jouw registrar.

  • What conditions do I have to meet as a registrar?

    Would you like to be able to register domain names for customers or for your own organisation by dealing directly with SIDN? If so, you can become a .nl registrar. Read more about the conditions and how to apply for registrar status on the page becoming a registrar.

More frequently asked questions

Governments are prime targets for phishing & CEO fraud

Multi-channel scams increasingly common

Card with login details on a fishing hook above a keyboard.
  • Tuesday 10 October 2023

Dutch daily newspaper Trouw recently reported an incident involving Alkmaar City Council. A cybercriminal posing as a council executive had managed to trick a staff member into making an urgent €236,000 funds transfer. Not noticing that the supposed executive's e-mail address was based on a 'typo-domain', the council worker simply did as his 'boss' told him. Thus adding the City of Alkmaar to the growing list of local authorities defrauded by internet scammers. Despite the warning provided by multiple attempted frauds earlier in the year.

Governments targeted more often in 2023

From the results of Alert Online's annual cybersecurity survey, we know that the Alkmaar incident is far from unusual. Local government workers who took part in the survey reported that attempted CEO frauds and phishing are increasingly common. And scams often involve not only e-mail, but also WhatsApp and voice calls to make them more convincing. All of which begs the question: are governments sufficiently well prepared? Especially with frauds becoming more sophisticated all the time. The crooks behind the Alkmaar incident knew exactly who to contact about their invoice, for example.

Part of a global trend

Problems are by no means confined to the Netherlands.In its annual phishing survey published last month, Cloudflare reported that the incidences of phishing and CEO fraud are rising, and that it's increasingly common for multiple channels to be used. So, for example, the same person within an organisation will get both an e-mail and a text message ('smishing'). In addition, scammers will often set up a 'clean' website to win the confidence of a victim and their firewalls, then add their malicious code later. And, if they don't succeed at first, they'll keep on trying. Another point highlighted by Cloudflare is that lookalike domain names are often an important feature of the scams -- a trend reflected in the growing demand for brand monitoring.

Non-reporting of incidents is a big problem

Against that backdrop, it's regrettable that many attempted scams are never reported, either internally or externally. According to Alert Online's findings, 40 per cent of government workers didn't report attempted scams. Typically because the incidents came to nothing, or because the individuals involved didn't see reporting as their responsibility. However, if incidents aren't reported, the scammers have free rein to go on trying, just as they did in the Alkmaar case.

Perceptions don't match reality

It appears that a exists discrepancy between perception and reality within many government organisations. Personnel working for such organisations say that their awareness of cybersecurity is reasonably good: they give themselves an average of 6.8 out of 10 on that score. Yet the growth in attempted scams and reported incidents suggests that crooks see governments as attractive targets. A quarter of surveyed government workers say that they have received phishing mail in the last 12 months. Yet survey respondents consistently report that government bodies' internal communication on the subject leaves a lot to be desired and doesn't command readers' attention.

About Alert Online

October is European Cybersecurity Month, and in the Netherlands Alert Online and its partners, including SIDN, are organising all sorts of cybersecurity-related activities. Visit the Alert Online website for details. Alert Online's full cybersecurity survey report is available to read at the government website