5 May, 2026

E. Leclerc Secures Transfer of Typosquatted Domains Used for Fraudulent Retail

UDRP Cases

French retail giant E. Leclerc successfully recovered four disputed domains used to host fake e-commerce websites. The Panel found the Respondent engaged in bad faith typosquatting by registering .shop and .store variants to exploit the well-known supermarket brand.

Case Snapshot

Case Number D2025-5037
Complainant Association des Centres Distributeurs E. Leclerc – A.C.D. Lec
Respondent w w
Disputed Domain
eleclercc.shopeleclercs.shopeleclercs.storeeleclercs.top
Threat Tactic Fake Stores
Decision Date 2026-01-26
Panelist Mauricio Jalife Daher
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-5037

Fraudulent Market Entry and Consumer Trust Risks

The registration of domains utilizing retail-centric extensions such as .shop and .store represents a calculated attempt to intercept consumers at the point of purchase. By appending minor character variations—specifically an additional ‘c’ or ‘s’—to the established E. Leclerc trademark, the Respondent utilized typosquatting to create plausible digital storefronts. This tactic specifically targets high-intent traffic from users seeking legitimate online shopping outlets. The strategic use of these specific gTLDs increases the likelihood of consumer confusion, as shoppers frequently associate these extensions with official e-commerce platforms, thereby allowing bad actors to siphon traffic away from the Complainant’s authorized retail infrastructure.

The operation of virtually identical fake websites selling phone accessories and men’s clothing under the E. Leclerc brand poses a severe risk to long-term customer trust. Because the disputed domains were used to host active fraudulent storefronts, there is a distinct threat that consumers would attribute negative experiences—such as non-delivery of goods or poor product quality—to the French retailer. Furthermore, the anonymity provided by WHOIS privacy services allowed the Respondent to establish a deceptive market presence without disclosing the site’s publisher, complicating initial detection and enforcement efforts. For a major retailer, the presence of unauthorized sites in diverse categories can lead to brand dilution and the erosion of the trademark’s reputation for quality across its broad European market presence.

The timing of these registrations in late 2025 demonstrates the persistent vulnerability brands face during digital expansion phases. While the domains became inactive after detection in November 2025, the initial active phase highlights the speed at which bad faith actors can deploy functional storefronts to exploit established goodwill. For IP professionals, this case underscores that minor typosquatting variants remain a primary mechanism for fraudulent market entry. The Panel’s finding that it was impossible for the Respondent to be unaware of the Complainant’s reputation confirms that these registrations were not coincidental but were instead a deliberate commercial exploit designed to profit from the trademark’s distinctive character.

Strategic Enforcement Against Retail-Specific Typosquatting

The Complainant successfully demonstrated that the Respondent’s selection of retail-centric generic Top-Level Domains (gTLDs), specifically .shop and .store, was a calculated attempt to impersonate the E. Leclerc brand within its primary commercial sector. By documenting the registration of four typosquatted variants—including eleclercc.shop and eleclercs.store—the Complainant established a clear pattern of targeting. The strategy was effective because it linked the minor typographical variations directly to the likelihood of consumer confusion in a digital retail context. The Panel affirmed that adding a single letter like ‘s’ or ‘c’ to a well-known mark does not prevent a finding of confusing similarity, especially when the extensions reinforce the brand’s expected online presence.

Persuasive evidence regarding the functional use of the domains was central to the finding of bad faith. The Complainant provided proof that the disputed domains initially hosted identical fake e-commerce websites selling apparel and phone accessories, which leveraged the E. Leclerc reputation to attract users for commercial gain. Although the Respondent used a privacy service to mask their identity and the websites became inactive after detection in November 2025, the historical evidence of fraudulent retail activity precluded any claim of a bona fide offering of goods or services. For IP professionals, this case confirms that documenting the ‘fake shop’ phase of a domain’s lifecycle is critical for overcoming registrar privacy shields and proving that the Respondent could not have been unaware of the Complainant’s prior trademark rights.

Practical Recommendations

  • Prioritize automated monitoring for ‘brand + extra character’ typosquatting variants specifically within retail-centric gTLDs like .shop, .store, and .top to preempt fraudulent storefront launches.
  • Capture comprehensive forensic evidence—including screenshots and source code—immediately upon detecting a fake shop, as these sites often go inactive or point to parked pages once a dispute is imminent to hide bad faith use.
  • Consolidate multiple infringing domains into a single UDRP filing when they exhibit identical website templates or overlapping registration windows to streamline legal costs and demonstrate a systematic pattern of targeting.
  • Leverage the UDRP ‘registrar verification’ phase to unmask respondents using privacy services, as identifying the true registrant can often reveal a larger network of infringing domains or a history of bad faith activity.
  • Conduct periodic cross-category audits of brand use; as seen in this case, retail-focused bad actors may use your trademark to sell unrelated goods like clothing or electronics to capitalize on generic consumer traffic.

Frequently Asked Questions (FAQ)

How did the respondent create a risk of consumer confusion with the E LECLERC brand?

The respondent engaged in typosquatting by registering domain names such as ‘eleclercc.shop’ and ‘eleclercs.shop’, which incorporate the E LECLERC trademark with minor character additions. The UDRP panel ruled that these additions were insufficient to prevent a finding of confusing similarity, as they still evoke the complainant’s well-known retail brand.

What evidence proved that the respondent lacked legitimate rights or interests in these domains?

The respondent failed to provide a rebuttal to the complainant’s claims. The panel noted that the respondent was not commonly known by the E LECLERC name, did not possess authorization to use the trademark, and used the domains to host fake retail websites, which does not constitute a bona fide offering of goods or services.

How did the panel determine that the disputed domains were registered and used in bad faith?

The panel found it implausible that the respondent was unaware of the complainant’s long-standing reputation. By using the domains to operate fake e-commerce sites selling unrelated clothing and accessories, the respondent demonstrated a clear intent to attract internet users for commercial gain by creating a likelihood of confusion with the E LECLERC brand.

What was the tactical outcome of the proceedings regarding the domains’ status?

Following the detection of the fraudulent activity and the initiation of the UDRP complaint, the domains initially became inactive. As a result of the proceedings, the panel ordered the transfer of all four domains (‘eleclercc.shop’, ‘eleclercs.shop’, ‘eleclercs.store’, and ‘eleclercs.top’) to the complainant, effectively removing the threat of ongoing traffic diversion and brand dilution.

Found a fake shop using your brand?

The E. Leclerc case (D2025-5037) demonstrates how attackers exploit .shop and .store domains to host fraudulent storefronts. If your brand is being impersonated to deceive consumers, our UDRP assessment can help you evaluate your legal options for domain recovery.

Request takedown assessment

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.