5 May, 2026

UDRP Panel Exposes Supplier Fraud Scheme Targeting Barrick’s North Mara Mine

UDRP Cases

Barrick Gold of North America, Inc. and Barrick Mining Corporation successfully recovered north-mara.com through a WIPO UDRP decision. The respondent registered the domain to impersonate the Complainant’s joint-venture gold mine in Tanzania and distribute fraudulent letters of intent to purchase to suppliers. Panelist Steven A. Maier ordered the domain transferred, denying the respondent’s attempt to simply cancel the registration during the dispute.

Case Snapshot

Case Number D2025-4859
Complainant Barrick Gold of North America, Inc.Barrick Mining Corporation
Respondent Thabani Ngobeni , Thabani Ngobeni
Disputed Domain
north-mara.com
Threat Tactic Corporate Impersonation
Decision Date 2025-11-27
Panelist Steven A. Maier
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4859

Exploitation of B2B Supply Chains and Reputational Risks in Joint-Venture Operations

The primary commercial risk demonstrated by the unauthorized registration of north-mara.com lies in target-specific procurement fraud. By utilizing the deceptive domain to distribute unauthorized ‘letters of intent to purchase’ to potential suppliers, the respondent initiated high-risk B2B communications under the guise of the official mine management. This tactic directly exploits the trust of commercial vendors who expect legitimate procurement inquiries from major industrial operations. While there is no evidence in the record indicating that any third-party supplier suffered actual financial losses, the deployment of mock purchase orders exposes the brand owner to severe relationship strain and potential legal entanglements with deceived business partners.

Furthermore, the respondent’s deployment of geographic mimicry significantly amplifies the trust risk. Resolving the domain to a website titled ‘North Mara Mine – Second-largest Gold Mine in Tanzania’ and copying the Complainant’s actual physical business address in Tanzania onto the mock portal created a highly convincing illusion of legitimacy. Suppliers performing routine background or geographical checks would find matching address details, making the fraudulent purchase inquiries extremely difficult to detect. This unauthorized use of real-world corporate data to validate digital scams directly erodes local and international vendor confidence in the brand’s verified communication channels.

Finally, the fraudulent operation poses severe reputational threats to complex international partnerships. Because the North Mara gold mine is operated as a joint venture with the Government of Tanzania, any digital impersonation that suggests administrative or purchasing authority impacts not just corporate operations, but also sensitive state-corporate relations. Deceptive activities of this nature threaten to compromise the public and regulatory standing of the joint venture, proving that domain security is a critical component of regional regulatory compliance and joint-venture stakeholder management.

Establishing Common Law Rights and Overriding Unilateral Cancellation Tactics

The Complainant’s strategy succeeded by first establishing unregistered common law trademark rights in the geographically descriptive name "NORTH MARA." Because the Complainant’s 2006 Tanzanian trademark application for BARRICK NORTH MARA remained pending at the time of the dispute, proving common law rights was essential. The Complainant achieved this by presenting extensive evidence of the gold mine’s global commercial reputation and its joint-venture structure with the Government of Tanzania. This common law foundation was heavily reinforced by undeniable proof of targeting. The Complainant documented that the disputed domain name resolved to an unauthorized portal displaying the mine’s actual Tanzanian physical address and describing specific operational details, such as a new sub-vertical shaft, proving the Respondent registered the domain with the Complainant’s specific business identity in mind.

Furthermore, the Complainant’s documentation of ongoing supply-chain impersonation prevented the Respondent from escaping a formal UDRP finding. When the Respondent contacted the WIPO Center on November 27, 2025, attempting to unilaterally cancel the domain on the grounds that it was not "worth disputing," the Complainant’s evidence of active fraud became central to the procedural outcome. The Complainant demonstrated that the Respondent had utilized the domain to distribute deceptive "letters of intent to purchase" to potential suppliers. Relying on this evidence, the Panel determined that there was a broader public interest under Section 4.10 of the WIPO Overview 3.0 to proceed to a substantive decision on the merits rather than allowing a silent cancellation, ultimately resulting in a formal transfer order.

Practical Recommendations

  • Proactively document and maintain extensive records of common law trademark usage, regional revenue figures, and public joint-venture operations to successfully assert unregistered trademark rights in UDRP actions, especially for geographically named industrial assets that lack active registrations.
  • When facing active fraud or supply-chain phishing, reject simple domain cancellations offered by the respondent and press the UDRP panel for a substantive decision on the merits to guarantee a formal transfer order, thereby preventing the domain from being immediately re-released or registered by other malicious actors.
  • Establish automated brand monitoring systems that scan for newly registered domains combining localized geographical names with core corporate assets (geo-mimicry) to quickly flag unauthorized sites displaying legitimate corporate physical addresses.
  • Develop a secure, public-facing portal or authenticated communication framework for suppliers and vendors to verify ‘letters of intent to purchase’ and procurement inquiries, neutralizing supply-chain fraud initiated via look-alike domains.

Frequently Asked Questions (FAQ)

Why was the domain north-mara.com considered confusingly similar to Barrick Gold’s intellectual property?

The panel found the domain name to be identical to the ‘NORTH MARA’ mark, in which the Complainant established unregistered common law trademark rights through its longstanding gold mining operations in the Tarime district of Tanzania.

How did the panel determine that the respondent lacked legitimate rights or interests in the domain?

The panel concluded the respondent had no authorization or relationship with the Complainant and was not commonly known by the disputed name, nor was the respondent making any bona fide commercial or noncommercial fair use of it.

What evidence proved the respondent’s bad faith registration and use of the domain?

Bad faith was demonstrated by the respondent’s creation of a deceptive website that mirrored the Complainant’s official business address and branding, specifically to facilitate a fraudulent scheme involving unauthorized ‘letters of intent to purchase’ sent to potential suppliers.

Did the respondent’s attempt to cancel the domain prevent a full UDRP decision?

No. Despite the respondent’s claim that the domain was not worth disputing, the panel ruled there was a broader public and corporate interest in issuing a substantive decision on the merits due to the clear evidence of fraudulent activity and supplier impersonation.

Facing corporate impersonation through a domain?

Is your brand being exploited to target your supply chain? We provide UDRP assessment services to help companies identify, track, and recover domains used for fraudulent procurement schemes.

Assess impersonation threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.