I'm not a domainer but recently found and registered a typo .com for a world-wide industrial company. Obviously I'm now getting a bunch of sensitive email to a catch-all mailbox.
How's your experience with approaching affected companies, are bounties usual or is it just worth the reg fee with regards to getting hammered with a trademark infringement?
I don't do bug bounties and I am not a lawyer, but use caution. You are accepting email destined for another organization. As illogical as this may sound, their company may react poorly and may send their lawyers after you. At that point, it is about proving malicious intent. They may fail but things can get complicated and expensive for you. I would explicitly start rejecting all email destined for that domain asap. All of this depends on how their folks think and trying to predict that is risky. I would also set up a simple static web page on that domain that says, "Did you mean to visit example.com instead?" without a clickable link so that your typo domain is not showing up in their stats.<p>As for what to do with this domain? This is probably not the answer you are looking for, but I would just let it expire.