brand-protection
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseStrategy: Brand Protection
策略:品牌保护
Guides discovery, reporting, and prevention of brand impersonation—fake websites, phishing sites, trademark infringement, and domain squatting. See domain-selection for defensive domain registration; trust-badges for official site verification signals; about-page for identity declaration.
When invoking: On first use, if helpful, open with 1–2 sentences on what this skill covers and why it matters, then provide the main output. On subsequent use or when the user asks to skip, go directly to the main output.
指导品牌仿冒(虚假网站、钓鱼网站、商标侵权及域名抢注)的识别、举报与预防工作。如需了解防御性域名注册,请查看 domain-selection;如需官方网站验证标识,请查看 trust-badges;如需身份声明相关内容,请查看 about-page。
调用时机:首次使用时,如有必要,先用1-2句话说明本技能覆盖范围及重要性,再提供主要输出内容。后续使用或用户要求跳过说明时,直接输出核心内容。
Initial Assessment
初步评估
Check for product marketing context first: If or exists, read it for brand name, official domain, and key assets.
.claude/product-marketing-context.md.cursor/product-marketing-context.mdIdentify:
- Impersonation type: Fake website, phishing, trademark misuse, domain squatting
- Evidence available: Screenshots, URLs, WHOIS, hosting info
- Legal assets: Registered trademark, copyright ownership
- Impact: Traffic interception (fake site ranks for brand queries)? Payment fraud (users pay on fake site, then contact official support)?
优先检查产品营销上下文:若存在 或 文件,请读取其中的品牌名称、官方域名及核心资产信息。
.claude/product-marketing-context.md.cursor/product-marketing-context.md需明确以下信息:
- 仿冒类型:虚假网站、钓鱼网站、商标滥用、域名抢注
- 可用证据:截图、URL、WHOIS信息、托管商信息
- 法律资产:已注册商标、版权所有权
- 影响范围:是否拦截流量(虚假网站在品牌搜索结果中排名靠前)?是否存在支付欺诈(用户在虚假网站付款后联系官方客服)?
Evidence Collection Checklist
证据收集清单
| Item | Action |
|---|---|
| Full URLs | Document all key pages of the fake site |
| Screenshots | Homepage, product pages, logo, layout; include date/time |
| Comparison | Side-by-side: official vs fake (layout, logo, copy similarity) |
| WHOIS | Use ICANN Lookup for registrar, creation date, registrant |
| Hosting | IP lookup to identify hosting provider |
| 项目 | 操作 |
|---|---|
| 完整URL | 记录虚假网站的所有关键页面地址 |
| 截图 | 首页、产品页、Logo、页面布局截图;需包含日期和时间 |
| 对比材料 | 官方网站与虚假网站的并排对比(布局、Logo、文案相似度) |
| WHOIS信息 | 使用 ICANN Lookup 查询注册商、创建日期、注册人信息 |
| 托管信息 | 通过IP查询识别托管服务提供商 |
Reporting Channels (Priority Order)
举报渠道(优先级排序)
| Channel | Entry | Use Case |
|---|---|---|
| Domain registrar | Abuse / Report Misuse on registrar site | Brand impersonation, trademark, fraud |
| Hosting provider | Same; submit abuse form | Hosting infringing content |
| Google Safe Browsing | Report Phishing | Phishing / impersonation risk |
| Google Trademark | Trademark Complaint or trademark@google.com | Trademark infringement in search; requires registered trademark |
| Bing Content Removal | Content Moderation Platform | Copyright/trademark; content removal from Bing |
| Payment processors | PayPal Resolution Center, Stripe support | If fake site accepts payments; report fraud |
| Social platforms | X, Facebook, Instagram abuse forms | If fake site is promoted or linked there |
| Google Ads / Microsoft Ads | Platform trademark complaint forms | If impersonator runs brand ads |
| DMCA | To hosting provider | Copyright infringement; images, copy, design copied |
| ICANN | DNS Abuse complaint | If registrar does not respond within reasonable time |
Report content: Include full URL, clear description of fraudulent activity, and all evidence (screenshots, logs).
| 渠道 | 入口 | 适用场景 |
|---|---|---|
| 域名注册商 | 注册商网站的「滥用举报/举报违规」入口 | 品牌仿冒、商标侵权、欺诈行为 |
| 托管服务提供商 | 同上;提交滥用举报表单 | 托管侵权内容的情况 |
| Google安全浏览 | 举报钓鱼网站 | 存在钓鱼/仿冒风险的网站 |
| Google商标投诉 | 商标投诉表单 或发送邮件至trademark@google.com | 搜索结果中的商标侵权;需提供已注册商标证明 |
| Bing内容移除 | 内容审核平台 | 版权/商标侵权;从Bing搜索结果中移除侵权内容 |
| 支付服务商 | PayPal争议解决中心、Stripe支持入口 | 若虚假网站接受付款;举报欺诈行为 |
| 社交平台 | X、Facebook、Instagram的滥用举报表单 | 若虚假网站在社交平台被推广或链接 |
| Google Ads/微软Ads | 平台商标投诉表单 | 仿冒者投放品牌相关广告的情况 |
| DMCA投诉 | 提交给托管服务提供商 | 版权侵权;如图片、文案、设计被抄袭 |
| ICANN | DNS滥用投诉指南 | 若注册商未在合理时间内响应投诉 |
举报内容:需包含完整URL、欺诈行为的清晰描述,以及所有证据(截图、日志等)。
Reporting Best Practices
举报最佳实践
Registrar vs hosting: Use ICANN Lookup for registrar. For hosting, use IP lookup (HostingCheckerOnline, HostingDetector, ipinfo.io) to find origin server—registrar may be Cloudflare while origin host is elsewhere; report to both.
Cloudflare as registrar: Use abuse.cloudflare.com or abuse form; select "Phishing & Malware" for impersonation. Email complaints are generally not processed; use the online form. Provide specific URLs of infringing pages.
Hosting detection: Sites behind Cloudflare CDN hide origin IP. Use reverse IP lookup or hosting detection tools to identify underlying host; submit abuse to that provider as well.
Parallel reporting: Submit to registrar, host, and Google Safe Browsing simultaneously; do not wait for one before others. Google trademark review takes 1–8 weeks.
注册商与托管商的区别:使用 ICANN Lookup 查询注册商。对于托管信息,使用IP查询工具(HostingCheckerOnline、HostingDetector、ipinfo.io)找到源服务器——注册商可能是Cloudflare,但源托管商可能是其他服务商;需同时向两者举报。
Cloudflare作为注册商:使用 abuse.cloudflare.com 或 滥用举报表单;选择「钓鱼与恶意软件」类别举报仿冒行为。通常不处理邮件投诉,请使用在线表单。需提供侵权页面的具体URL。
托管商检测:使用Cloudflare CDN的网站会隐藏源IP。使用反向IP查询或托管检测工具识别底层托管商;同时向该服务商提交滥用举报。
并行举报:同时向注册商、托管商和Google安全浏览提交举报;无需等待某一渠道的回复再提交其他渠道。Google商标审核通常需要1-8周时间。
Legal Options
法律选项
| Option | When | Notes |
|---|---|---|
| Cease and desist | Trademark infringement | Lawyer-drafted; often first step |
| DMCA takedown | Copyrighted material copied | Images, copy, design; hosting providers typically comply |
| Consumer protection | Scam / fraud | FTC ReportFraud.ftc.gov (US) |
| Law enforcement | Financial loss, identity theft | IC3 (FBI) for cybercrime |
| 选项 | 适用场景 | 注意事项 |
|---|---|---|
| 停止侵权通知 | 商标侵权 | 由律师起草;通常是第一步措施 |
| DMCA下架通知 | 受版权保护的内容被抄袭 | 如图片、文案、设计;托管服务提供商通常会配合处理 |
| 消费者保护投诉 | 诈骗/欺诈行为 | 美国可通过FTC的ReportFraud.ftc.gov提交投诉 |
| 执法部门报案 | 存在财产损失、身份盗窃 | 针对网络犯罪,可向FBI下属的IC3报案 |
Prevention Measures
预防措施
Defensive Registration
防御性域名注册
- Register brand+ai, brand+app, brand+official, etc. See domain-selection for defensive registration.
- Redirect variants to main domain; do not deploy separate sites.
- 注册品牌+ai、品牌+app、品牌+official等变体域名。如需了解防御性域名注册详情,请查看 domain-selection。
- 将变体域名重定向至主域名;不要部署独立站点。
Official Site Verification
官方网站验证标识
Place "Official website: [domain]" prominently:
- Homepage (above fold or hero)
- Sign-in / Sign-up pages
- Pricing / Payment pages: "Only pay at [official-domain]. Do not enter payment on other domains."
- Footer: "© [Brand]. Official site: [domain]"
- FAQ: "How do I verify I'm on the official site?" → "The only official URL is [domain]. Any other domain is not affiliated."
Use trust-badges for verification signals. See about-page for identity declaration.
在网站显眼位置标注「官方网站:[域名]」:
- 首页(首屏或Hero区域)
- 登录/注册页面
- 定价/支付页面:标注「仅可在[官方域名]完成付款。请勿在其他域名输入支付信息。」
- 页脚:标注「© [品牌名称]。官方网站:[域名]」
- FAQ页面:添加问题「如何验证我访问的是官方网站?」,回答「唯一官方URL为[域名]。其他域名均与我司无关。」
使用 trust-badges 作为官方验证标识。如需身份声明相关内容,请查看 about-page。
Customer Support (Payment Fraud)
客户支持(支付欺诈应对)
When users report "can't use after payment" but no record exists—likely paid on fake site:
- Verify source: Ask which URL they used (request screenshot or URL).
- Response template: Explain that the only official site is [official-domain]; if they paid elsewhere, that site is not affiliated. Recommend: (a) dispute charge with payment provider, (b) use only [official-domain] going forward.
- Roll out template to support team; ensure consistent messaging.
当用户反馈「付款后无法使用服务」但官方无付款记录时——用户很可能在虚假网站付款:
- 核实来源:询问用户使用的URL(可要求提供截图或链接)。
- 回复模板:说明唯一官方网站为[官方域名];若用户在其他网站付款,该网站与我司无关。建议用户:(a) 向支付服务商申请拒付;(b) 后续仅使用[官方域名]。
- 推广模板:将该模板推广至整个支持团队;确保回复口径一致。
User Education
用户教育
- Social media pinned post / announcement: "Only use [official-domain]"
- Email signatures, support replies: link to official domain only
- 社交媒体置顶帖/公告:「仅可使用[官方域名]」
- 邮件签名、支持回复:仅链接至官方域名
Traffic Recovery (When Impersonation Intercepts Search)
流量恢复(当仿冒网站拦截搜索流量时)
| Tactic | Purpose |
|---|---|
| Brand search ads | Run Google Ads and Microsoft Ads on brand terms; ensure official site appears first for brand queries |
| SEO | Strengthen official site for branded queries; Organization schema, clear H1, meta tags. See schema-markup, title-tag |
| Social | Pinned post: "Only use [official-domain]. Beware of impersonation." |
| 策略 | 目的 |
|---|---|
| 品牌搜索广告 | 在Google Ads和微软Ads投放品牌关键词广告;确保官方网站在品牌搜索结果中排名第一 |
| SEO优化 | 强化官方网站在品牌关键词搜索中的表现;使用组织架构Schema、清晰的H1标签、元标签。如需了解详情,请查看 schema-markup、title-tag |
| 社交媒体 | 置顶帖:「仅可使用[官方域名]。警惕仿冒网站。」 |
Monitoring (Ongoing)
持续监控
- Periodic search: brand name + common variants (e.g., brand+ai, brand+app)
- Consider brand monitoring services (BrandShield, Doppel) for scale
- 定期搜索:品牌名称 + 常见变体(如品牌+ai、品牌+app)
- 如需规模化监控,可考虑使用品牌监控服务(如BrandShield、Doppel)
Timeline (Typical)
典型时间线
| Phase | Focus |
|---|---|
| Immediate (Days 1–3) | Support template; site declaration; evidence collection |
| Short-term (Week 1–2) | Abuse reports; Google Safe Browsing; DMCA if applicable |
| Traffic (Week 2+) | Brand ads; SEO; social announcement |
| Ongoing | Monitoring; defensive registration if feasible |
| 阶段 | 重点工作 |
|---|---|
| 紧急处理(第1-3天) | 制定支持回复模板;网站添加官方域名声明;收集证据 |
| 短期处理(第1-2周) | 提交滥用举报;向Google安全浏览举报;如适用则提交DMCA投诉 |
| 流量恢复(第2周及以后) | 投放品牌广告;优化SEO;发布社交媒体公告 |
| 持续阶段 | 监控品牌情况;如可行则进行防御性域名注册 |
Implementation Checklist
实施清单
Short-term (1–2 weeks): Evidence collection; abuse reports to registrar and host; Google Safe Browsing report; DMCA if applicable; add "Official website" on site.
Medium-term: Add impersonation guidance to domain-selection; official verification to trust-badges, about-page.
Long-term: Periodic search (brand + variants); brand monitoring (BrandShield, Doppel); defensive registration of variants.
短期(1-2周):收集证据;向注册商和托管商提交滥用举报;向Google安全浏览举报;如适用则提交DMCA投诉;在网站添加「官方网站」标识。
中期:将仿冒防范指导添加至domain-selection;将官方验证标识相关内容添加至trust-badges、about-page。
长期:定期搜索(品牌名称+变体);使用品牌监控服务(BrandShield、Doppel);注册变体域名进行防御。
Output Format
输出格式
- Evidence package (checklist, evidence list)
- Report templates (registrar, hosting, Google)
- Timeline (immediate vs medium vs long-term actions)
- Prevention (defensive registration, site verification, user education)
- 证据包(清单、证据列表)
- 举报模板(注册商、托管商、Google)
- 时间线(紧急、中期、长期行动)
- 预防措施(防御性域名注册、网站验证、用户教育)
References
参考资料
- How to Report and Take Down a Fake Website - LegalClarity
- Website Spoofing: Detection and Take Down - BrandShield
- ICANN DNS Abuse Complaints Guide
- Google Safe Browsing - Report Phishing
- Cloudflare Abuse Reporting — use online form; select Phishing & Malware
- Google Trademark Complaint
- Bing Content Removal
- 如何举报并关闭虚假网站 - LegalClarity
- 网站仿冒:检测与移除 - BrandShield
- ICANN DNS滥用投诉指南
- Google安全浏览 - 举报钓鱼网站
- Cloudflare滥用举报 — 使用在线表单;选择「钓鱼与恶意软件」类别
- Google商标投诉
- Bing内容移除
Related Skills
相关技能
- domain-selection: Defensive domain registration; brand variants
- rebranding-strategy: When rebranding, sync brand protection checks
- branding: Brand asset protection; consistency
- trust-badges: Official site verification signals
- about-page: Official identity and domain declaration
- homepage-generator: "Official website" placement
- google-ads, paid-ads-strategy: Brand search ads for traffic recovery
- schema-markup, title-tag: SEO for branded queries
- domain-selection:防御性域名注册;品牌变体域名
- rebranding-strategy:品牌重塑时,同步品牌保护检查
- branding:品牌资产保护;一致性维护
- trust-badges:官方网站验证标识
- about-page:官方身份与域名声明
- homepage-generator:「官方网站」标识放置
- google-ads, paid-ads-strategy:品牌搜索广告用于流量恢复
- schema-markup, title-tag:品牌关键词的SEO优化