Kaspersky spots spike in World Cup phishing scams

Attackers are impersonating World Cup partners and advertising tickets for up to ten times their face value

Malicious actors are exploiting the upcoming 2018 FIFA World Cup to conduct phishing attacks only two weeks before the tournament kicks off.

Researchers at cyber security company Kaspersky Lab have detected a spike in the number of phishing pages appearing during match ticket sales, alongside a general rise in the number of football-related spam and World Cup-themed attacks.

Detailing their observations in a report published on SecureList, Kaspersky's research hub, experts showcased examples of fake lottery win notifications, advertising spam, and emails from attackers impersonating World Cup sponsors

The most significant scam involved fraudsters posing as touts or third parties in order to sell match tickets to fans who may have missed out during general sale via official channels.

Despite a complex and security-laden process of purchasing tickets - with legitimate tickets only being offered through the FIFA website via a multi-staged process - Kaspersky suggested a massive surge in users accessing the website led to fraudsters purchasing as many as they could with the aim of advertising these for up to ten times their face value.

"With full advance payment required, there is no guarantee that fraudsters will forward the tickets," the security firm warned. "What is guaranteed, however is that the payment information used to buy the tickets will give scammers all they need to collect additional funds from the user in the future."

Scams detected largely relied on the attackers registering a series of domains combining the words 'world', 'worldcup', 'FIFA' and 'Russia', among others to feign credibility, while purchasing the cheapest SSL certificates to further dupe users. Researchers also detected a number of 'sleeper' sites being used as backups once a previous domain is blocked.

"With an event such as the World Cup, there is a high risk that football fans will pay extortionate prices - only to end up with fake tickets," warned David Mole, head of sales UK and Ireland at Kaspersky.

"Once a hacker has your payment details, it can lead to them stealing your money. We urge people to be cautious and vigilant when they buy tickets. The first step is using authorised sellers to avoid getting duped."

Further examples include 'fake lottery win' notifications, which often contain malicious attachments and a message asking the 'winner' to forward their personal details to claim their prize, and in some cases asking to pay for part of the postage or bank transfer fees. These emails, the researchers said, are primarily aimed at harvesting user data.

Fraudsters are also imitating the World Cup's partners and sponsors to exploit the fact these organisations often organise giveaways for clients. These web pages, according to Kaspersky, look convincing and employ a responsive user interface - with VISA, the tournament's commercial sponsor, being a primary target.

There is expected to be "an explosion" of phishing sites offering cheap airline tickets to host cities in Russia, the report continued, as well as fake offers from malicious actors impersonating accommodation services in the days leading up to the tournament.

The world of football is no stranger to the threat of phishing attacks, with Italian football club Lazio earlier this year suffering a high-profile attack in which 2 million (1.75m) was stolen. The Serie A team was fooled by fraudsters posing as representatives from another club demanding the final payment for a player transfer from 2014.

Scammers often use the cover of contemporary or trending subjects to conduct phishing attacks, with threat detection specialists Redscan recently uncovering the first case of hackers impersonating well-known companies to send malicious emails asking users to update their personal information in light of at-the-time imminent GDPR implementation.

Picture: Shutterstock

Featured Resources

BCDR buyer's guide for MSPs

How to choose a business continuity and disaster recovery solution

Download now

The definitive guide to IT security

Protecting your MSP and your customers

Download now

Cost of a data breach report 2020

Find out what factors help mitigate breach costs

Download now

The complete guide to changing your phone system provider

Optimise your phone system for better business results

Download now

Recommended

New report highlights the need for diversity in cyber security recruitment
cyber security

New report highlights the need for diversity in cyber security recruitment

28 Apr 2021
eBay, Apple, Microsoft, Facebook, and Google were phishers’ top targets in 2020
phishing

eBay, Apple, Microsoft, Facebook, and Google were phishers’ top targets in 2020

20 Apr 2021
HackBoss malware is using Telegram to steal cryptocurrency from other hackers
cryptocurrencies

HackBoss malware is using Telegram to steal cryptocurrency from other hackers

16 Apr 2021
Data breach exposes widespread fake reviews on Amazon
data breaches

Data breach exposes widespread fake reviews on Amazon

7 May 2021

Most Popular

KPMG offers staff 'four-day fortnight' in hybrid work plans
flexible working

KPMG offers staff 'four-day fortnight' in hybrid work plans

6 May 2021
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

29 Apr 2021
How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

30 Apr 2021