16 July, 2026

Trademark Infringement and Domain Consolidation Strategy

UDRP Cases

Concora Credit Inc. successfully secured the transfer of eight domain names that used its MILESTONE, INDIGO, and DESTINY trademarks. The WIPO panel determined that the four respondents were acting in bad faith to impersonate the credit card provider and deceive consumers.

Case Snapshot

Case Number D2026-1785
Complainant Concora Credit Inc.
Respondent Camela AndrewJohn WickOut ReachSunil Gupta, host cob
Disputed Domain
mydestiny-card.commyindigocard.onlinemymilestonecard.cloudmymilestonecard.com.comymilestonecard.onlmymilestone-card.onlinemymilestonecard.sitemymilestoneecard.com
Threat Tactic Typo Domains
Decision Date 2026-07-02
Panelist Tobias Malte Müller
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2026-1785

Operational Risks of Typosquatting in Financial Services

The use of typosquatted domains—such as ‘mydestiny-card.com’ and variations of ‘mymilestonecard’—creates a direct threat to brand equity and customer security. By incorporating Concora Credit Inc.’s protected trademarks, these domains deceive consumers into believing they are interacting with legitimate credit card service portals. This unauthorized association facilitates the potential for consumer confusion, mistake, or deliberate deception, as the respondents leverage the reputation of established financial brands for their own commercial gain. Such tactics undermine the trust essential to the Complainant’s business, effectively weaponizing the brand identity against its own customer base.

The registration of these domains by disparate entities utilizing privacy services introduces significant challenges in attribution and mitigation. By obfuscating ownership behind ‘Withheld for Privacy’ services, bad actors create barriers to swift enforcement and increase the likelihood of data harvesting. The failure of the respondents to respond to the UDRP complaint further highlights a pattern of bad-faith use, where the primary utility of the domains appears to be the exploitation of the Complainant’s intellectual property for malicious or unauthorized purposes. These domain-level threats require proactive monitoring to identify and neutralize fraudulent touchpoints before they cause widespread financial harm or identity-related risks to the brand’s clientele.

Trademark Consolidation and Strategic Multi-Respondent UDRP Litigation

The Complainant’s successful recovery of eight disputed domain names hinged on the strategic consolidation of four nominally distinct registrants into a single UDRP proceeding. By providing comprehensive evidence of a unified portfolio of U.S. trademark registrations—specifically for MILESTONE, INDIGO, and DESTINY—the Complainant demonstrated that the Respondents were engaged in a coordinated effort to deceive consumers. This approach allowed the Complainant to effectively bypass the complications often caused by privacy services. The Panel accepted this consolidation after the Complainant proved that the domain names, registered across multiple dates and entities, collectively impersonated the Complainant’s established financial services brand to exploit consumer trust.

The persuasive impact of the case was amplified by the Complainant’s detailed factual submission regarding its long-standing trademark rights, which predated the registration of all challenged domains. By clearly mapping its registered trademark portfolio against the typosquatted and infringing variations, the Complainant established a compelling narrative of bad faith registration and use. Because the Respondents failed to file a response, they offered no rebuttal to these documented claims of unauthorized brand association. Consequently, the Panel was able to rely entirely on the Complainant’s evidence to conclude that the Respondents lacked any legitimate interest in the domains and had acted with the intent to divert traffic for potential commercial gain.

Practical Recommendations

  • Utilize consolidated UDRP filings to address multiple typosquatting domains registered by different entities when evidence suggests common control, such as similar domain naming patterns or registration dates.
  • Proactively monitor and document the use of privacy services for brand-related domains, ensuring your legal team is prepared to file for disclosure early in the UDRP process to identify the underlying registrant.
  • Maintain a comprehensive, up-to-date schedule of all trademark registrations and dates of first use to provide unequivocal evidence of priority and rights during UDRP proceedings.
  • Capture and preserve screenshots and source code of infringing websites early to demonstrate ‘bad faith’ use, specifically highlighting any unauthorized attempts to mimic official brand identity or offer competing services.
  • Ensure your domain enforcement strategy includes a regular audit of common typos and brand-plus-keyword variations to identify and address infringing domains before they reach high-traffic volume or inflict significant brand dilution.

Frequently Asked Questions (FAQ)

Why were the disputed domains considered confusingly similar to Concora Credit Inc.’s trademarks?

The domains, including ‘mymilestonecard.cloud’ and ‘mydestiny-card.com,’ were found confusingly similar because they incorporated the Complainant’s protected MILESTONE, INDIGO, and DESTINY trademarks in their entirety, creating a high likelihood that consumers would mistakenly associate the sites with the Complainant’s legitimate financial services.

How did the Complainant prove the Respondents lacked legitimate rights or interests?

The Complainant demonstrated that it never granted the Respondents permission to use its marks. Evidence confirmed the disputed domains were registered years after the Complainant established its trademark portfolio, and the Respondents failed to offer any evidence of prior rights or non-commercial, fair use.

What evidence established the Respondents’ bad faith in this dispute?

The Panel concluded that the Respondents acted in bad faith by using the domains to falsely associate themselves with the Complainant for their own commercial gain. This was supported by the fact that the Respondents used privacy services to obscure their identities and failed to respond to the Complaint, indicating an intent to deceive consumers.

What was the strategic advantage of consolidating the claims against these multiple registrants?

By consolidating the complaint against four nominally different registrants, Concora Credit Inc. effectively addressed a coordinated typosquatting campaign in a single proceeding. The Panel found this consolidation appropriate, as it streamlined the process of demonstrating a common pattern of bad-faith conduct across all eight disputed domain names.

Need to recover a look-alike domain?

Your brand’s domain portfolio is a primary target for typosquatting and impersonation attacks. Don’t wait for consumer confusion to impact your reputation—learn how to consolidate evidence and successfully secure the transfer of abusive domains.

Start domain recovery

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.