If several claims have been filed for the same url, we will process those claims on a case by case basis, under the presumption that the claim we received first belongs to the legitimate balance holder.
Can I please request that a very tough CAPTCHA is included on the claim form, so that the legitimate owners at least have a small chance to get their claims in first
before the original attacker?
I can imagine the attacker is crafting the beginnings of a script right now to automate their illegitimate claims.