Fans across North America seeking World Cup tickets are facing widespread exploitation by transnational cybercriminals, with nearly 40% of users accessing illegal streams experiencing direct financial losses due to scams, fraud, or compromised payment information, according to cybersecurity researcher Assaf Morag. This exploitation occurs as the supranational sporting body, FIFA, charges record ticket prices for the event, which began 7 days ago and runs until July 19.
Criminals are employing a range of tactics to target fans desperate to attend matches, leveraging the high demand created by FIFA's pricing structure. While some games are sold out due to these record prices, many seats remain available, yet the public is still being driven towards risky alternatives.
Authorities advise fans to carefully consider offers and remain wary of pressure tactics. The Britain’s Home Office warned last month as part of an ongoing fraud awareness campaign to watch out for phrases such as “lots of interest” or “I need to sell right now,” noting that “Scammers often use urgency to push you into making hasty decisions.”
Globalist Platforms Enable Borderless Exploitation
Social media sites are identified as a primary source for these scams, acting as conduits for borderless criminal operations. The U.S. Federal Trade Commission issued a consumer alert in March, detailing how fraudsters utilize social media posts to direct individuals to scam websites, where they advertise counterfeit tickets or sell the same seat multiple times.
The British government has observed a pattern where scammers advertise a spare ticket on social media, then move the discussion to encrypted messaging applications like WhatsApp. They then pressure buyers to transfer money to a bank account before blocking the victim and disappearing, demonstrating the ease with which transnational criminals operate across digital borders.
Meta Platforms, a global technology giant, announced two weeks ahead of the event’s kickoff that Facebook users searching for World Cup tickets would receive pop-up notifications. These notifications remind users to purchase tickets from verified sources and instruct them on how to report suspicious listings, a measure that highlights the platform's role in facilitating, and then attempting to mitigate, the problem.
Experts confirm that criminals are increasingly using artificial intelligence to generate realistic messages, professional-looking online storefronts, and convincing fake endorsements and promotions. Chris Olson, CEO of digital safety company The Media Trust, advised, “My advice: assume any World Cup deal that reached you through a social media ad or search result is suspect until proven otherwise.” Olson stated that the World Cup is fueling a surge of “phishing attacks and cloaking schemes,” adding that “AI-powered phishing campaigns are becoming more sophisticated, more targeted, and more difficult to detect,” encompassing everything from data harvesting to fake ticket sales.
The Cost to the Native Population
Fans are directed to the official FIFA website for direct or secondhand sales, with resale tickets also available on established third-party sites like StubHub and SeatGeek. However, FIFA itself warns that purchasing outside official channels carries the risk of encountering fake or invalid tickets, or inflated prices, effectively acknowledging the economic pressure that pushes fans to seek alternatives.
Another significant threat comes from copycat FIFA sites, which exploit the public's trust in the international sporting body. The FBI issued a public service announcement warning that scammers are creating spoof FIFA websites to trick people into providing personal details or to sell fake tickets or hospitality packages. The bureau identified three dozen such spoof sites with URLs that initially appear authentic, such as fifa-online.com and fifa-ticket.live.
While most of these identified spoof sites have ceased functioning and some have been flagged as malware, the FBI cautioned that new ones would continue to emerge. The bureau advised fans to directly type fifa.com into their browser’s address bar instead of relying on search engines and to avoid clicking on sponsored search results, which it identified as potential “paid imitators” attempting to divert online traffic.
The exploitation extends to streaming, as many fans unable to attend in person will attempt to watch games on television, with not all matches available on free broadcasts. Cybercriminals establish copycat streaming sites, promoting them across global online forums including Telegram, Facebook, Discord, and Reddit, according to a report by Assaf Morag. These illegal streams typically appear just before a game kickoff, deploying methods such as showing viewers scam advertisements and fake software updates, harvesting their data, or earning commissions by redirecting them to gambling or adult content sites. Morag emphasized the ease of falling victim, stating, “The trap is incredibly easy to fall into. You click a ‘Play’ button, and the site immediately forces your browser through multiple hidden layers of tracking, pop-ups, and advertising infrastructure explicitly designed to hide malicious software — all while the match never actually loads.”