.net and .com are not the exact domain name.

"something.com" is not the same as "something.net." They can resolve to the same IP address, but they can also resolve to different IP's. If you have registered both the .net and .com domains, then you have legal standing. If not, the best thing you could do is alert the ISP that is hosting the offending website to the situation. They do not HAVE to do anything about it, but they are the only people that CAN do anything about it legally.

Can you give us the address of these 2 sites? I guess you don't have to, but I would mind looking at them...

@abojasim13: I saw the bad language, but still, there is nothing we can do about it. It is illegal and this forum is about white hat hackers, people who are there to help others defend themselves by showing them where the joles are in their systems.

And even if someone would take the site down, they would fix the vulnerability and but it up again, stronger then before...

My advice to you is to warn people about "other copies" of your site. There is not much you can do about it...

Hope you understand

I have to disagree.  This is what the legal system is for.  Get a lawyer and talk to the ISP hosting the offending website.  Attacking a website that you are not authorized to attack is illegal no matter if you think it is justified.

I'm too lazy to look into the geography of it, but I randomly remembered this from the one random business law class I had in college.

http://en.wikipedia.org/wiki/Cybersquatting

I guess you could offer to buy the .net.... not a good solution but they are mirroring your site content for some reason.

Only thing not mentioned here is Law Enforcement, contact your local LE agency, see if any local/state/federal laws were broken, you might even be able to set the FBI on them.