Authorities are cautioning the public about fraudulent websites posing as FIFA in anticipation of the 2026 World Cup, aiming to deceive individuals into providing personal and financial details, peddle counterfeit tickets and hospitality packages, and perpetrate various other scams related to the event.
With the global soccer tournament scheduled to take place from June 11 to July 19 in the United States, Canada, and Mexico, threat actors have established numerous phishing sites.
According to a public service announcement from the FBI, these fake domains mimic the official fifa.com but utilize subtle spelling alterations that are easy for users to overlook, such as fiffa[.]com, and employ different top-level domains (e.g., .org, .xyz, .live, .sale), as well as deceptive employment portals like “jobs-fifa[.]com” or “fifa-hiring[.]com.”
The agency highlights that many of these fraudulent websites gather a wide range of data from visitors, including names, physical and email addresses, phone numbers, and banking/payment information, which could be exploited to establish fake accounts, engage in identity theft, or perpetrate financial fraud.
The magnitude of these schemes is evident in reports from cybersecurity firms Group-IB and Bitdefender, whose researchers have observed malvertising campaigns linked to the World Cup being promoted through Google Search, Facebook ads, Telegram, and WhatsApp.
An extensive operation identified by Group-IB researchers as Ghost Stadium, attributed to a Chinese threat actor, has set up over 300 phishing sites that replicate the authentic FIFA portal to perpetrate premium ticket fraud.
.jpg)
Since February, Bitdefender has observed deceptive activities surrounding the World Cup brand targeting users in the UK, Portugal, Spain, Algeria, the US, Canada, Mexico, Brazil, Germany, and Australia, offering counterfeit merchandise, kits, collectibles, streaming services, and Panini sticker deals.
As interest in the World Cup grows, cybercriminals are likely to exploit this enthusiasm through various tactics, including setting up fraudulent online platforms to sell counterfeit goods or extract money and personal information.
To mitigate these risks, fans can follow a set of recommendations from the FBI:
Users are encouraged to report any incidents to the FBI’s Internet Crime Complaint Center (IC3) and provide details such as the fraudulent domain used, interaction history, and payment information to enable authorities to take appropriate action against the deceptive portal.
Automated pentesting tools offer valuable insights, primarily focusing on assessing an attacker’s ability to navigate through a network. However, these tools are not designed to evaluate the effectiveness of your security controls, the responsiveness of your detection rules, or the resilience of your cloud configurations.
This comprehensive guide outlines the six key areas that require validation.
Download Now
EU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
Warning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
Facebook’s New Look: A Blend of Instagram’s Style
Facebook Compliance: ICE-tracking Page Removed After US Government Intervention
Facebook and Instagram to Reduce Personalized Ads for European Users
InstaDub: Meta’s AI Translation Tool for Instagram Videos
Reclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
Meta discontinues Messenger apps for Windows and macOS
Subscribe to our weekly newsletter below and never miss the latest News or an exclusive offer.
