Meta Platforms, Inc. successfully sought the transfer of meta2fa.com from Mr. Ngo Van Cong. The panel found the respondent used the domain to impersonate Meta by offering unauthorized Facebook account services, establishing trademark infringement and bad faith.
Case Snapshot
| Case Number | D2026-2143 |
|---|---|
| Complainant | Meta Platforms, Inc. |
| Respondent | Mr. Ngo Van Cong (Ngô Văn Công) |
| Disputed Domain | meta2fa.com |
| Threat Tactic | Corporate Impersonation |
| Decision Date | 2026-07-10 |
| Panelist | Pham Nghiem Xuan Bac |
| Outcome | Transfer |
| Official Source | https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2026-2143 |
Commercial Impersonation and Consumer Trust Risks
The registration and active use of ‘meta2fa.com’ demonstrate a calculated effort to exploit the Meta brand for unauthorized commercial gain. By operating a website that offered Facebook clone accounts and related services, the respondent engaged in direct corporate impersonation. This tactic leverages the established reputation of Meta’s trademarks to mislead internet users into believing the site is sponsored by, or affiliated with, the complainant. The lack of any disclaimer on the platform exacerbates this risk, as consumers are likely to perceive the unauthorized services as legitimate extensions of Meta’s ecosystem, thereby eroding trust in the official brand and exposing users to potential security vulnerabilities associated with non-official account management.
Furthermore, the respondent’s use of privacy protection services to obscure their identity, combined with their failure to participate in the UDRP proceedings, indicates a deliberate strategy to evade accountability while maintaining the infringing domain. This behavior poses an ongoing operational burden for brand owners, necessitating constant monitoring and reactive legal intervention to curb the proliferation of clone services. By creating a likelihood of confusion through the explicit display of Meta’s trademarks and logos, the respondent has successfully diverted traffic intended for official services, thereby directly harming the integrity of the complainant’s intellectual property and potentially compromising the security and data privacy of users redirected through these deceptive channels.
Legal Analysis of Trademark Impersonation and Bad Faith Under UDRP
The panel evaluated the disputed domain meta2fa.com under the three-prong test of the UDRP, finding it confusingly similar to Meta Platforms, Inc.’s established META trademark. By incorporating the trademark in its entirety—merely appending the number ‘2’—the respondent created a domain that clearly evokes the complainant’s brand identity. This finding of confusing similarity is a foundational element in UDRP cases involving service-oriented domains where the complainant holds widespread global trademark rights. The inclusion of additional terms does not sufficiently distinguish the domain from the protected mark, as the primary source identifier remains prominent and recognizable to the public.
The respondent failed to establish any rights or legitimate interests in the domain. The evidence demonstrates that the respondent was not authorized, licensed, or affiliated with Meta Platforms, Inc. in any capacity. Furthermore, the respondent’s use of the domain for commercial gain through the sale of Facebook clone accounts constitutes neither a bona fide offering of goods or services nor a legitimate non-commercial or fair use of the domain. Because the respondent did not submit a formal response, the panel concluded the complainant successfully made a prima facie case that the respondent lacks any legitimate claim to the contested domain.
The finding of bad faith was solidified by the respondent’s direct use of the complainant’s FACEBOOK trademarks and logos on the website to facilitate the sale of unauthorized services. By attempting to attract internet users to a platform that mirrors Meta’s brand identity, the respondent sought to capitalize on the confusion regarding sponsorship or endorsement for commercial gain. The utilization of a privacy protection service to obscure identity, coupled with the respondent’s failure to participate in the proceedings, further supports the finding of bad faith registration and use. This pattern of conduct reflects a calculated intent to misappropriate the brand’s reputation for fraudulent service provision.
Strategic Drivers in Meta Platforms, Inc. v. meta2fa.com
The Complainant’s success was anchored in a rigorous demonstration of service-based impersonation. By providing concrete evidence that the domain meta2fa.com hosted a website offering unauthorized Facebook clone accounts and services, Meta Platforms, Inc. established a clear likelihood of consumer confusion regarding affiliation. The inclusion of the company’s trademarks and logos on the respondent’s site effectively bridged the gap between mere domain registration and active bad-faith use. This tactical focus on the commercial exploitation of the site, rather than solely on the domain name itself, enabled the panel to easily identify that the respondent lacked legitimate interests and operated with malicious intent to divert traffic for commercial gain.
Procedurally, the complainant maintained momentum through a disciplined approach to the language of proceedings and respondent non-compliance. Recognizing that the original registration agreement was in Vietnamese, Meta Platforms proactively moved to conduct the case in English, ensuring clear legal communication. The respondent’s decision to utilize a privacy service and failure to contest the allegations further strengthened the complainant’s position under the UDRP. By highlighting the absence of any disclaimer on the infringing site and documenting the respondent’s failure to respond, Meta Platforms effectively leveraged the respondent’s own inaction to confirm bad-faith registration and use, ultimately securing the swift transfer of the disputed domain.
Practical Recommendations
- Prioritize evidence of website content, such as screenshots of unauthorized logo usage and service offerings (e.g., ‘clone accounts’), to establish bad faith use under UDRP paragraph 4(b)(iv).
- Monitor domain registration databases for the use of privacy services, as this often indicates an attempt to mask identity and can be presented as supportive evidence of bad faith.
- Proactively research the language of the domain’s Registration Agreement early in the dispute to ensure timely preparation of language-related motions, avoiding procedural delays in multilingual proceedings.
- Document instances where domain names incorporate core brand trademarks followed by service-related suffixes (e.g., ‘2fa’, ‘login’) to strengthen claims of confusing similarity and intentional brand impersonation.
- Utilize a ‘no-response’ outcome to streamline proceedings, while ensuring the complaint thoroughly addresses all three UDRP elements to satisfy the panel’s burden of proof requirements.
Frequently Asked Questions (FAQ)
Why was the domain meta2fa.com considered confusingly similar to the Meta trademark?
The WIPO panel determined that meta2fa.com is confusingly similar because it incorporates the ‘META’ trademark in its entirety, with the addition of ‘2fa’ (a common security acronym). This combination fails to prevent consumer confusion regarding the official nature of the site.
What evidence established that the respondent lacked legitimate interests in the domain?
The panel found that the respondent had no authorization, license, or affiliation with Meta Platforms, Inc. The respondent’s use of the domain to host a commercial service for Facebook clone accounts provided no basis for a legitimate, non-commercial, or fair use claim.
How did the respondent’s actions confirm bad faith registration and use?
Bad faith was established by the respondent’s intentional targeting of Meta’s reputation for commercial gain. The website prominently featured Meta’s Facebook trademarks and logos to mislead users, and the respondent further demonstrated bad faith by using a privacy protection service and failing to respond to the formal complaint.
What was the practical outcome and significance of this case for Meta?
The panel ordered the transfer of meta2fa.com to Meta Platforms, Inc. This successful UDRP action mitigates the risk of brand dilution and unauthorized service impersonation by removing a site that diverted traffic by masquerading as a legitimate security or account support portal.
Facing corporate impersonation through a domain?
Protect your brand integrity by identifying and recovering assets used to deceive customers or host unauthorized services. Schedule a UDRP eligibility assessment today.
This case note is for informational purposes only and is not legal advice.



