5 May, 2026

Michelin Secures Restaurant and Food Guide Domains After Uncovering Fake Login Page

UDRP Cases

Compagnie Générale des Etablissements Michelin has won a UDRP dispute to transfer three domains, including michelinrestaurantguide.com. The respondent had registered these domains and established a deceptive webpage designed to look like a Michelin corporate login portal. The WIPO panelist ruled that this constituted clear brand impersonation and ordered the immediate transfer of the domain names.

Case Snapshot

Case Number D2025-4535
Complainant Compagnie Générale des Etablissements Michelin
Respondent John smith, Michelin guide
Disputed Domain
michelinfoodguides.commichelinfoodsguide.commichelinrestaurantguide.com
Threat Tactic Corporate Impersonation
Decision Date 2025-12-29
Panelist Leo (Yi) Liu
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4535

Corporate Impersonation and Failed Legitimacy Claims in Michelin Dispute

The UDRP decision in Case No. D2025-4535 highlights the limits of a respondent’s attempt to manufacture legitimacy through deceptive registration details. The respondent registered the disputed domains—michelinfoodguides.com, michelinfoodsguide.com, and michelinrestaurantguide.com—under the contact name ‘John smith, Michelin guide.’ This self-identifying name failed to persuade WIPO Panelist Leo (Yi) Liu that the respondent possessed any rights or legitimate interests. Instead, combining the famous MICHELIN trademark with descriptive terms matching the Complainant’s core culinary business (‘food guides’ and ‘restaurant guide’) was deemed a deliberate effort to mimic the Complainant, reinforcing the panel’s finding of confusing similarity.

Beyond the naming deception, the technical setup of the disputed domains revealed a profound security and trust risk. Although the domains were inactive at the time of the decision, historical screenshots showed they previously shared a landing page styled as a fake MICHELIN login screen displaying the Complainant’s trademark. Such configurations create an immediate risk of credential harvesting targeting customers, partners, or internal staff who might mistake the deceptive portal for an authorized corporate login. The panel recognized that utilizing a brand’s trademark on a fake login screen constitutes clear registration and use in bad faith, designed to free-ride on the Complainant’s goodwill and attract users for commercial gain.

For brand owners, this case illustrates how bad-faith actors leverage highly targeted brand-plus-keyword variations to maximize confusion. By focusing specifically on Michelin’s restaurant and dining guide niche, the respondent directly threatened the integrity of the Complainant’s specialized digital directories. Unchecked, such targeted corporate impersonation risks eroding consumer trust and diluting brand equity. Although no actual phishing distribution or verified financial losses were established in this proceeding, the Complainant’s prompt filing on November 3, 2025, successfully neutralized this deceptive infrastructure before the credentials of unsuspecting users could be compromised.

Evidentiary Preservation and the Failure of Fabricated Identity

The Complainant’s strategy succeeded primarily due to the meticulous preservation of historical website content, which successfully overcame the challenge of temporary passive holding. Although the disputed domains (michelinfoodguides.com, michelinfoodsguide.com, and michelinrestaurantguide.com) did not resolve to active webpages at the time of the decision, the Complainant submitted critical screenshot evidence showing they previously shared a mock MICHELIN login screen displaying the brand’s trademark. This concrete proof of corporate impersonation established bad faith registration and use under the UDRP, persuading the panel that the infrastructure was intentionally configured to attract users by creating a likelihood of confusion with the Complainant’s mark.

Furthermore, the respondent’s attempt to manufacture legitimacy by registering the domains under the contact name ‘John smith, Michelin guide’ failed to persuade the panel. The panel found that self-identifying with the Complainant’s trademark does not confer rights or legitimate interests, especially when lacking any official authorization or evidence of a bona fide generic offering. By combining the distinctive MICHELIN trademark with core terms closely associated with the Complainant’s dining directories—specifically ‘food guides’ and ‘restaurant guide’—the respondent’s naming choices served as further proof of a deliberate intent to free-ride on the brand’s established goodwill, leading to a default transfer order.

Practical Recommendations

  • Capture and preserve time-stamped visual evidence of infringing web content immediately upon discovery; in this case, capturing screenshots of the active fake login screens before the domains transitioned to passive holding was vital to proving bad faith.
  • Expand domain monitoring parameters to prioritize combinations of your primary trademarks with core industry-specific terms (such as ‘food guides’ or ‘restaurant guide’) to intercept high-risk impersonation targets early.
  • Formulate legal arguments that directly expose deceptive registrant names (e.g., ‘John smith, Michelin guide’) as evidence of bad faith registration rather than legitimate authorization or rights under the first element of the UDRP.
  • Develop a rapid-response protocol between brand protection and IT security teams to fast-track UDRP complaints whenever a disputed domain displays a mock corporate login portal, addressing potential credential harvesting risks proactively.

Frequently Asked Questions (FAQ)

Why did the panel consider michelinfoodguides.com and related domains confusingly similar to the MICHELIN trademark?

The panel ruled that the domains are confusingly similar because they fully incorporate the well-known MICHELIN mark while appending descriptive terms like ‘food guides’ and ‘restaurant guide,’ which directly correlate to the Complainant’s business, thereby creating a high likelihood of consumer confusion.

What evidence proved the respondent’s bad faith in this UDRP case?

Bad faith was established by evidence—specifically screenshots—showing the domains were used to host a deceptive login page that mimicked the Complainant’s official portal. This demonstrated an intentional attempt to attract users for commercial gain by impersonating the MICHELIN brand.

How did the respondent attempt to establish rights, and why did the panel reject their position?

The respondent failed to submit a reply to the complaint, resulting in a default notice. Furthermore, the respondent’s own name, ‘Michelin guide,’ was insufficient to establish any legitimate rights or interests, especially given the clear evidence of brand impersonation.

What is the primary business risk highlighted by these specific disputed domains?

The primary risk identified is corporate impersonation. By directing traffic to a fake login screen, the respondent created a mechanism for potential credential harvesting, which could expose partners or customers to fraud and erode the brand equity of Michelin’s legitimate dining guides.

Facing corporate impersonation through a domain?

Protect your brand from deceptive login portals and credential harvesting. Learn how to secure a swift transfer of infringing domains.

Assess impersonation threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.