New data from the World Intellectual Property Organization, as well as from MarkMonitor, highlights problem of brand abuse online

The number of cybersquatting reports rose nearly 10 percent last year, according to a United Nations agency charged with protecting intellectual property worldwide.

The World Intellectual Property Organization (WIPO) said on Monday that a record-breaking 2,329 complaints of cybersquatting were filed with the agency in 2008 -- an 8 percent increase from 2007. Nearly half of the complaints came from U.S. organizations.

Among the industries hit most by cybersquatting were biotechnology and pharmaceuticals, which accounted for 9.9 percent of the complaints to WIPO; banking and finance, 9.4 percent; Internet and IT, 8.8 percent; retail, 8.1 percent; food, beverage, and restaurants, 7.2 percent; entertainment, 6.5 percent; media and publishing, 6.3 percent; fashion, 6.0 percent; and hotels and travel, 6.0 percent.

"Cybersquatting remains a serious issue for trademark holders. Supported especially by registrar and registry stakeholders, the sale and broad expansion of new top level domains in the open market, if not properly managed, will provide abundant opportunities for cybersquatters to seize old ground in new domains," said Francis Gurry, WIPO director general, in a statement.

WIPO's report jibes with a recently released study by MarkMonitor, which examined abuse of the top 30 brands and found that most of the same ones still get spoofed online. In its Annual Brandjacking Index for 2008, MarkMonitor found 80 percent of sites it first discovered in the first quarter of 2007 abusing brands were still alive and well in 2008. The abuse ranges from using a famous brand name just to drive traffic to the misrepresented site, to infecting visitors, according to MarkMonitor.

The WIPO report only scratches the surface of all of the ongoing abuse, according to MarkMonitor. "The rise in [WIPO] filings highlights how online brand abuse is a growth industry. However, the 2,300 UDRP [Uniform Domain Name Dispute Resolution Policy] filings in 2008 [to WIPO] are only a drop in the bucket when compared to the real scope of the problem of cybersquatting and other abuses of the domain name system," says Te Smith, vice president of communications for MarkMonitor. "In our latest Brandjacking Index, we saw on average 15,000 abuses per brand."

According to MarkMonitor's findings, the fourth quarter saw more than 440,000 cybersquatting incidents, 86,837 cases of false association, and 33,614 cases of pay-per-click abuse. And blended-abuse attacks, where cybersquatting is combined with malware and other abuses, are on the rise.

"In addition to the brand [abuse] component is a really scary component of...shoving brand names in metatags to [raise search engine optimization standings of a malicious] Web page to draw users there and get them infected," says Blake Hayward, vice president of product marketing for MarkMonitor.

Both the WIPO and MarkMonitor reports indicate that English-speaking countries are the biggest target of abuse. "While we didn't track the language being used on the abuse Web sites, the Brandjacking Index did note that English-speaking countries account for almost 80 percent of the top 15 countries hosting abuse sites, with the U.S. at 69 percent, the U.K. at 4 percent, Canada at 3 percent, and Australia at 2 percent," MarkMonitor's Smith says. "However, this could be a function of a robust Internet infrastructure in these countries."

Meanwhile, well-known brand names remain prime targets of abuse due to their familiarity and ability to drive traffic. "Ultimately, consumers pay the price for online brand abuse, as they are misled to sites that range from the annoying to the truly dangerous, with counterfeit goods, identity theft scams, or malware downloads," Smith says.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message

Read more about:


About the Author(s)

Kelly Jackson Higgins, Editor-in-Chief, Dark Reading

Kelly Jackson Higgins is the Editor-in-Chief of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise Magazine, Virginia Business magazine, and other major media properties. Jackson Higgins was recently selected as one of the Top 10 Cybersecurity Journalists in the US, and named as one of Folio's 2019 Top Women in Media. She began her career as a sports writer in the Washington, DC metropolitan area, and earned her BA at William & Mary. Follow her on Twitter @kjhiggins.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights