Scammers Create Fake FIFA World Cup Websites to Steal Data

Fraudulent operators have created duplicate FIFA World Cup websites to steal personal information and sell fake tickets to fans [1, 2].

These scams target supporters globally, including those in Canada, by mimicking official ticketing portals [1, 2, 3]. The deception poses a significant financial risk to consumers and a security threat to their private data.

According to CBC News, "Scammers have created dupes of FIFA's World Cup website designed to steal your personal info and sell fake tickets" ^[1]. These sites are designed to look identical to the official platforms to trick users into providing sensitive credentials, or payment details.

Security experts said that these campaigns often intensify as the tournament date approaches. TechRadar said, "Scammers are already targeting fans with fake ticket sites ahead of the World Cup" ^[3]. In one instance, these efforts began approximately one month before the start of the 2022 event ^[3].

Cybercriminals typically use these duplicate sites to harvest names, email addresses, and credit card numbers. Once the data is stolen, it can be sold on the dark web or used for further identity theft. The counterfeit tickets sold through these portals are worthless, leaving fans without entry to the matches and without their money.

Fans are advised to verify the URL of any ticketing site and avoid clicking links in unsolicited emails or social media messages. Official tickets should only be purchased through the verified FIFA portal to ensure authenticity and data security.