Hi All,

I am not sure if this is the right place to ask this question, but we are facing a peculiar issue.

An unknown domain http://unauthdomain.cf is forwarding (with masking) to our domain http://ourdomain.com.
The data, files, content are being served from our server even at folder levels. Any changes made to our pages is reflecting on their pages as well.
However, the URLs are showing as http://unauthdomain.cf/folder1 instead of http://ourdomain.com/folder1.

We detected this issue when we got an alert in our Google Webmaster tools. We reported this to Cloudfront / Hosting provider and the same was removed after a few hours. However, now we have found 3 other unauthorized domains with the same forwarding/linking.

How do we stop these domains (even in future) from spoofing our site? Can this be handled at domain DNS configuration level? If not, what changes should we do to server (We use Nginx) level to prevent such issues?