On the 2nd of July (this year) a friend of mine received an e-mail from “Frozen Midnight, LLC” hosting. The e-mail contained threats of legal action and the involvement of local law enforcement because my friend’s account had apparently been caught breaking the Frozen Midnight terms of service. In a fluster, my friend agreed to pay a set price each month providing FM could prove that there had been malicious activity from the account concerned. At the same time, she posted a public cry for help because this was not something that had happened to her before.
After some delay FM got back in touch with some PDFs, claiming that my friend owed them hundreds of dollars, that she must reply within 3 days and pay within 3 months. However, upon closer inspection of the PDFs it seemed that while — yes, one of FM‘s servers had been used to execute a DoS attack (amongst other things) — the server IP that my friend was originally on did not correspond with the IP of the exploited server or show any connection whatsoever.
Now, at the time this incident occurred FM didn’t actually have any policies which place liability in the hands of their clients in the case of unintentional damage, so even if the evidence against my friend had supported FMs wacky claims, they’d be clutching at straws to try and do anything about it. Furthermore, FM‘s existing Terms of Service policy states that they are in fact an “Inc” rather than an “LLC”, but there seems to be no mention of FM in any official online business databases. This is not a surprise when you consider that the owner is one ‘Jamie Timbre’; a high school junior aged only 171.
In preparation for the dispute of FM‘s accusations, my friend’s new host (and knowledgeable aide) discovered further evidence claims against other FM customers. One young woman from the UK is being charged $267.84 for “phishing” despite — to her knowledge — running “
only a personal blog site with [her] photoshop icons, banners etc.” blissfully unaware of what phishing even is!2 Her e-mails to FM have gone ignored, left unable to contact anyone because of the cost of international phone calls.
During my own research, I uncovered an old thread at The Fanlistings forum where another FM customer was accused of sending “
over 1000 emails” and given a bill of $98.643, as well as another thread from earlier this year where several customers had paid for goods (hosting, domains, etc) that they had to wait weeks to receive (or in some cases, didn’t receive at all)4 and this delay was simply to hold them past the 30-day money back guarantee period. Other customers are constantly complaining about MySQL downtime causing massive data loss and site-wide errors. Elsewhere, one customer was charged $81 for uploading illegal material despite having submitted repeated support requests because she couldn’t access her FTP5 and in the same thread another mentions her bill of $300 for phishing and DDoS attacks against their server despite also not having access to her account.
The evidence is mounting up, showing repeated threats of prosecution and demands for large sums of money and yet with no proof to back it up it seems very likely to me that these claims are nothing more than fraudulent. My advice: if you’re a FM customer, move your hosting to someone more reliable. If you’re not, consider yourself lucky and DO NOT under any circumstances take on their services. If you’ve been accused of anything by Frozen Midnight LLC/Frozen Midnight Inc feel free to get in touch (firstname.lastname@example.org) and I’ll forward your details on to someone who can help.
- 1 Cached copy of Jason’s school website profile
- 2 Charge of $267.84 for “phishing”; Webmaster-Talk.com
- 3 Bill for 1000 e-mails; thefanlistings.org
- 4 Delayed and unreceived services; thefanlistings.org
- 5 Uploading illegal content without ftp
- No support, unreceived refund; vividmb.org
- Bribing customers into posting positive reviews
- Selling a dedicated server, delivering only shared hosting
- Bad review after bad review
- In the business 10 years? Wouldn’t that make him 7?
- Wrong EPP code/key, domain expired
- Suspended account after accusations of DDoS, no proof (again)
- Months worth of downtime
Update: This post has a follow-up, Follow-up on Frozen Midnight, which is also worth reading.