5 May, 2026

BOLLORE Trademark Protected Against Crypto-Themed Domain Exploitation

UDRP Cases

Bolloré SE successfully secured the transfer of three domain names containing its BOLLORÉ mark and the keyword ‘finrevoux’. The panel cited the configuration of MX servers and the use of the domains for unrelated cryptocurrency services as clear evidence of bad faith registration and use.

Case Snapshot

Case Number D2025-4764
Complainant BOLLORE SE
Respondent Affing, AffDerrendinger ANNEMARIE
Disputed Domain
bollore-finrevoux.combollorefinrevoux.combollorefinrevoux.net
Threat Tactic Brand Plus Keyword
Decision Date 2026-01-09
Panelist WiIliam A. Van Caenegem
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4764

MX Server Configuration and Financial Impersonation Risks

The registration of ‘bollore-finrevoux.com’ with active MX servers represents a direct threat of business email compromise (BEC). For a conglomerate like Bolloré SE, which reported 3 billion Euros in revenue in 2024, the technical capability to send emails from a domain incorporating the BOLLORÉ trademark allows for the creation of highly credible fraudulent communications. The panel noted that the configuration of email servers for a domain featuring a famous mark, where no legitimate interest exists, is evidence of bad faith intent. This infrastructure enables the respondent to potentially target the Complainant’s 3,204 employees or its global client base with phishing or fraudulent invoicing schemes that appear to originate from an official source.

The unauthorized association of the BOLLORÉ mark with cryptocurrency services introduces severe reputation and brand dilution risks. Before deactivation, the disputed domains resolved to sites promoting crypto-related services, a tactic that exploits the trust built by the Complainant since its initial trademark registrations in 1998. The use of the suffix ‘finrevoux’—a term suggesting financial or investment activity—heightens the risk of passing off, as users may reasonably believe these domains represent an authorized financial division of the Bolloré Group. This unauthorized entry into the volatile cryptocurrency sector could mislead investors and stakeholders, creating a perceived association with high-risk financial products that the Complainant does not endorse.

The coordinated registration of three domains within a single 24-hour window indicates a professionalized attempt to intercept traffic across multiple TLDs, including .com and .net. By utilizing varied registrars and privacy shields, the respondent increased the administrative complexity of enforcement. However, the identical structure of the domains and their shared use for cryptocurrency promotion allowed for a successful consolidation of the proceedings. This pattern of behavior demonstrates that the threat was not an isolated incident but a strategic effort to capture digital real estate associated with the BOLLORÉ brand, necessitating a comprehensive UDRP response to prevent the continued exploitation of the conglomerate’s corporate identity.

Strategy Breakdown: Procedural Consolidation and Technical Evidence of Bad Faith

The Complainant’s strategy effectively leveraged procedural consolidation to address three disputed domains registered across different registrars within a 24-hour window in November 2025. By demonstrating that the domains shared a common naming structure—combining the protected BOLLORÉ mark with the keyword ‘finrevoux’—and identifying overlapping registrant information, the Complainant established a unified pattern of conduct. This approach allowed the panel to view the registrations as a coordinated attempt to exploit the French conglomerate’s reputation, which includes a 2024 revenue of 3 billion Euros and international trademark protections dating back to 1998. The panel accepted that such temporal and structural proximity made it inconceivable that the registrations were coincidental, facilitating a streamlined enforcement action that covered multiple TLDs simultaneously.

Persuasive technical evidence regarding MX server configuration served as a primary pillar for establishing bad faith intent under the UDRP. The Complainant highlighted that ‘bollore-finrevoux.com’ was specifically configured with MX records, making the domain capable of sending and receiving emails. The panel found that the configuration of email servers for a domain incorporating a famous mark is strong evidence of a bad faith intent to facilitate email fraud or impersonation. Furthermore, the documented use of the domains to promote unrelated cryptocurrency services prior to deactivation reinforced the lack of legitimate interest. This combination of technical preparedness for potential phishing and the unauthorized association with the volatile crypto sector provided the panel with clear indicators of bad faith, even where some domains were being passively held without active web content.

Practical Recommendations

  • Implement automated DNS monitoring to detect the configuration of MX (mail) records on infringing domains, as panels increasingly view active mail servers as definitive evidence of bad faith intent for fraud even in the absence of a live website.
  • Utilize ‘pattern of registration’ evidence—such as domains registered within a 24-hour window using identical keyword structures—to consolidate multiple disputes into a single UDRP proceeding, even if they involve different registrars.
  • Document and present evidence of ‘sector mismatch’ when a domain is used for unrelated high-risk industries like cryptocurrency, as this effectively negates respondent claims of rights or legitimate interests under the Policy.
  • Leverage the ‘famous mark’ doctrine in complaints involving passive holding to satisfy the bad faith requirement, particularly when it is impossible to conceive of any good-faith use for a domain combining a famous brand with a financial keyword.
  • Capture and preserve screenshots of infringing content immediately upon discovery, as the deactivation of a site (e.g., crypto-related pages) by the respondent does not moot a bad faith finding if previous unauthorized use can be proven.

Frequently Asked Questions (FAQ)

Why did the panel find that the addition of ‘finrevoux’ to the BOLLORÉ mark still resulted in confusingly similar domains?

The panel determined that incorporating the famous BOLLORÉ trademark in its entirety is sufficient to establish confusing similarity, regardless of the addition of the fictitious term ‘finrevoux’, as it does not sufficiently distinguish the domains from the Complainant’s brand.

How did the respondent’s technical configuration of the domains contribute to the finding of bad faith?

The configuration of MX servers on the disputed domain ‘bollore-finrevoux.com’ was cited by the panel as clear evidence of bad faith, as it enabled the potential for email fraud or business email compromise, which cannot be considered a legitimate use of the trademark.

What evidence did the panel use to demonstrate the respondent’s lack of legitimate rights to the domains?

The panel observed that the respondent used the domains to promote unrelated cryptocurrency services or left them as inactive websites, and failed to provide any response or evidence demonstrating they were commonly known by or authorized to use the BOLLORÉ trademark.

What was the tactical significance of consolidating these three domains into a single proceeding?

Consolidation was successful because the domains were registered within one day of each other, shared the same naming structure (‘Bolloré’ plus ‘finrevoux’), and were linked to the same entity, allowing the panel to address the common pattern of abusive registration collectively.

Found a brand-plus-keyword impersonation domain?

Abusive domains combining your mark with seemingly random keywords are often a precursor to email fraud or phishing. If you’ve identified domains mirroring your brand structure, our UDRP assessment can help determine the viability of a transfer action.

Assess brand threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.