The 2026 FIFA World Cup kicked off on June 11th across the United States, Canada, and Mexico. Six million fans are expected to attend, and millions more will hunt online for tickets, streams, and jerseys. Scammers prepared for this moment too. The FBI and several research teams report thousands of fake FIFA websites, malicious streaming apps, and stolen logins already in circulation. The good news is simple. A few easy habits protect you from nearly all of it, and none of them cost a dime.
Исследователи Group-IB tracked more than 4,300 fraudulent FIFA domains registered since August 2025. One criminal group, nicknamed GHOST STADIUM, runs over 300 cloned copies of the official FIFA site. The fakes copy the real login page and even load images straight from FIFA’s own servers, which makes them hard to spot by eye. Once you enter your password, the criminals reset it, lock you out, and resell any tickets tied to your account.
Your defense costs nothing. Type fifa.com into your browser yourself instead of clicking links in ads, search results, or social posts. Turn on многофакторная аутентификация for your FIFA account so a stolen password alone gets a thief nowhere.
Researchers at ThreatFabric and Kaspersky found malicious streaming apps spreading Android вредоносных программ families named Массив и Perseus. These apps live outside the official app stores, so installing one means clicking past several warnings from your own phone. After installation, the malware requests accessibility permissions, then records your typing, places fake login screens over your real banking apps, and intercepts your one-time security codes.
Bitdefender found more than 55 football themed ad campaigns on Facebook and Instagram pushing counterfeit jerseys and fake collectible stickers. Fortinet counted over 1,700 spoofed FIFA social accounts, plus a fake hiring scheme sending job applicants to a lookalike Google login page. Before you buy or apply, check the account behind the offer. Real brands link back to official websites, post consistently over time, and accept normal payment methods. A two minute check saves you a counterfeit jersey and a stolen password.
Kaspersky tested wireless networks in three Mexican host cities and found roughly one in ten with no password at all. Open networks make it easy for criminals to set up copycat hotspots and read your traffic. While traveling, use your mobile data for banking and email. Save the общедоступный Wi-Fi for checking scores and bragging in the group chat.
If your employees love football, World Cup links are headed to their inboxes and phones right now. Stolen logins from this campaign are already showing up in criminal data dumps, gathered by password stealing malware with names like Vidar, ЛюммаC2 и Красная линия. You do not need an enterprise budget to respond. Add a short reminder to your next team meeting: buy tickets only at fifa.com, skip загруженный streaming apps (Android only), and report odd emails without fear of blame. Free breach notification services let you check whether company logins have surfaced in stolen data. Small, cheap steps like these stop most of what these criminals attempt.
Узнавайте и делитесь последними тенденциями, советами и передовыми методами в области кибербезопасности, а также новыми угрозами, на которые следует обратить внимание.
Чемпионат мира по футболу FIFA 2026 стартовал 11 июня в США, Канаде и Мексике. Шесть миллионов болельщиков...
Читать далее
Google разработала и выпустила новую меру защиты от кражи сессионных файлов cookie, которая делает их бесполезными на любом устройстве...
Читать далее
Новые эталонные наборы данных MDASH и Claude Mythos Preview — это лучшие агенты искусственного интеллекта, выявляющие уязвимости нулевого дня...
Читать далееБолее пристальное внимание к человеческим рискам с помощью позитивного подхода, который превосходит традиционное тестирование на фишинг.
