5 May, 2026

WIPO Panel Orders Transfer of Law Firm Impersonation Domain lathamswatkinsllp.com

UDRP Cases

Latham & Watkins LLP successfully challenged the registration of lathamswatkinsllp.com. The WIPO panel found the domain was registered to impersonate the firm by appending ‘LLP’ to the trademark and ordered a full transfer to the Complainant.

Case Snapshot

Case Number D2025-4680
Complainant Latham & Watkins LLP
Respondent Maxime Bernard – CLIMAGENERAL
Disputed Domain
lathamswatkinsllp.com
Threat Tactic Corporate Impersonation
Decision Date 2025-12-29
Panelist Nicholas Weston
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4680

Corporate Impersonation and Professional Identity Risks

The registration of lathamswatkinsllp.com represents a direct threat to the corporate identity of Latham & Watkins LLP, a global firm with a legacy dating back to 1934 and a workforce of over 3,500 lawyers. By appending the industry-specific suffix ‘llp’ to the Complainant’s primary trademark, the Respondent created a deceptive variant that leverages the firm’s professional status. Although the Complainant maintains its primary digital presence at lw.com and also holds lathamswatkins.com, the existence of a third-party domain incorporating its full name alongside a legal entity designation creates a high probability of confusion. This impersonation tactic is designed to give the impression of an official connection, potentially undermining the professional trust the firm has established across its thirty global offices.

The domain poses a severe potential risk for business email compromise (BEC) and targeted phishing campaigns. In the legal sector, fraudulent actors frequently utilize ‘brand-plus-keyword’ domains to impersonate partners or administrative staff during high-value transactions. While the panel noted that the domain remained inactive, this passive holding does not mitigate the threat. The deceptive nature of the ‘LLP’ suffix makes it an ideal tool for social engineering, where clients or vendors might fail to distinguish between the firm’s legitimate digital assets and a fraudulent variant. For a global entity managing sensitive legal and financial matters, the potential for data breaches or unauthorized communications through such a mimicry domain constitutes a persistent operational vulnerability.

The panel’s finding of bad faith despite the domain’s inactivity underscores the business necessity of proactive recovery. Under the totality of circumstances, including the fame of the LATHAM & WATKINS mark and the Respondent’s failure to provide any evidence of legitimate interest, the domain was viewed as a latent hazard. By securing a transfer, the Complainant prevents the ‘wait-and-see’ risk where a domain remains dormant only to be activated for malicious purposes once the registrant believes oversight has diminished. For IP professionals, this case highlights that recovery is a critical defensive measure to prevent third parties from capitalizing on a firm’s reputation or eventually using the domain to divert traffic and disrupt client relations.

Leveraging Long-Standing Trademark Rights Against Professional Services Impersonation

Latham & Watkins LLP successfully established its case by providing documented evidence of trademark rights dating back to 2000, which significantly predated the October 2024 registration of the disputed domain. The legal strategy effectively neutralized the Respondent’s use of the industry-specific ‘LLP’ suffix by demonstrating that such an addition does not mitigate confusing similarity but rather enhances the likelihood of corporate impersonation. By incorporating the entirety of the LATHAM & WATKINS mark, the Complainant met the burden for the first UDRP element, proving that the domain was specifically designed to mirror the firm’s professional identity and professional services designation, regardless of the firm’s use of its primary lw.com domain.

The strategy regarding the ‘bad faith’ and ‘rights or legitimate interests’ elements centered on the lack of any authorized relationship and the deceptive nature of the registration. Despite the domain remaining inactive in a state of passive holding, the Complainant successfully argued that the registration was intended to give the impression of a connection to the global law firm. This position was reinforced by the Respondent’s failure to provide evidence of any legitimate interest or license to use the mark. The WIPO panelist accepted the Complainant’s contention that the selection of the domain name was a deliberate attempt to exploit the reputation of a firm with over 3,500 lawyers and thirty international offices, finding that passive holding did not prevent a bad faith determination under the totality of the circumstances.

Practical Recommendations

  • Prioritize enforcement against domains that append industry-specific suffixes like ‘LLP’ or ‘Law’ to your trademark, as these are high-risk indicators of intent to commit business email compromise (BEC).
  • Utilize the ‘passive holding’ doctrine in UDRP complaints to recover deceptive domains before they are activated for phishing, provided the domain is clearly targeted at a well-known or famous trademark.
  • Implement automated monitoring for ‘brand + legal entity’ variants (e.g., BrandLLP.com) to detect corporate impersonation attempts early in the registration lifecycle.
  • Conduct a defensive registration audit to ensure your firm owns key domain variants that include professional designations, effectively closing off common vectors for trademark-plus-keyword tactics.
  • Ensure UDRP filings for professional services firms emphasize the ‘totality of circumstances,’ including the lack of any conceivable legitimate use for a domain name that mirrors a firm’s legal identity.

Frequently Asked Questions (FAQ)

Why was the domain ‘lathamswatkinsllp.com’ considered confusingly similar to the firm’s trademark?

The WIPO panel determined that the domain incorporates the complainant’s registered ‘LATHAM & WATKINS’ mark in its entirety. The addition of the suffix ‘llp’—a common professional designation for law firms—fails to distinguish the domain and instead reinforces the false impression that the domain is officially connected to the complainant.

How did the panel address the fact that the disputed domain was being held passively?

Under the UDRP, the ‘passive holding’ of a domain does not preclude a finding of bad faith. The panel considered the totality of the circumstances, noting that the respondent provided no evidence of legitimate use and that the registration of a well-known law firm’s name served only to impersonate the brand, satisfying the requirements for bad faith under the policy.

What evidence proved that the respondent lacked legitimate rights or interests in the domain?

The complainant established that it never authorized, licensed, or consented to the respondent’s use of its ‘LATHAM & WATKINS’ trademark. Since the respondent failed to respond to the complaint and provided no evidence of any fair use or preparations to use the name in connection with a legitimate offering, the panel concluded the respondent had no rights or legitimate interests.

What is the primary risk associated with this type of domain registration?

This tactic, known as corporate impersonation, poses a significant business risk by creating an infrastructure for potential business email compromise (BEC) or phishing. By mimicking the firm’s name with an ‘LLP’ suffix, the respondent creates a credible-looking domain that could be leveraged to deceive clients and erode professional trust.

Facing corporate impersonation through a domain?

Professional service firms are frequent targets for deceptive ‘LLP’ domain variants. Don’t wait for a phishing incident to occur—learn how to proactively identify and recover unauthorized brand-mimicking domains.

Assess impersonation threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.