{"id":452929,"date":"2026-06-30T11:32:38","date_gmt":"2026-06-30T08:32:38","guid":{"rendered":"https:\/\/menatech.net\/en\/?p=452929"},"modified":"2026-06-30T11:32:38","modified_gmt":"2026-06-30T08:32:38","slug":"new-report-over-336-domains-impersonate-the-official-world-cup-website","status":"publish","type":"post","link":"https:\/\/menatech.net\/en\/new-report-over-336-domains-impersonate-the-official-world-cup-website\/","title":{"rendered":"New report: over 336 domains impersonate the official World Cup website"},"content":{"rendered":"<div id=\"model-response-message-contentr_964170ac7ccfba00\" class=\"markdown markdown-main-panel enable-luminous-fast-follows enable-updated-hr-color stronger tutor-markdown-rendering\" dir=\"ltr\" aria-busy=\"false\" aria-live=\"polite\">\n<p data-path-to-node=\"0\">New report detected a cluster of at least 336 unique web domains engineered specifically to impersonate and mimic official World Cup resources. Following the official launch of the World Cup 2026 tournament on June 11, malicious actors have aggressively scaled up automated social engineering operations, leveraging fan excitement to extract liquid funds and hijack private personal datasets.<\/p>\n<p data-path-to-node=\"2\">The mechanics of the active digital broadcast scams target the seasonal migration of millions of global viewers attempting to view live athletic metrics via internet-connected hardware. Threat actors structure high-fidelity phishing landing pages claiming to distribute uncompromised, free streaming channels covering active fixtures. Upon selecting the prominent Watch now prompt, consumers are directed through an automated data entry window requiring user registration.<\/p>\n<p data-path-to-node=\"3\">The system then locks visual continuity, mandating that the user process a dedicated cryptocurrency payment to capture what the interface labels lifetime tournament access. The severe vector risk embedded within this specific scheme exposes target consumers to a double-layer compromise: the immediate, irreversible loss of cryptographic capital paired with the programmatic theft of profile registration credentials.<\/p>\n<p data-path-to-node=\"4\">Concurrently, analysis tracked specialized betting traps leveraging look-alike score prediction boards. Security teams isolated a Spanish-language platform that mandates the entry of granular identifier data\u2014including user first and last names, email vectors, and active telephone numbers\u2014under the guise of routine digital account creation. These data harvest networks leave users highly vulnerable to systemic credential theft, especially across consumer sets that exhibit high password reuse tendencies across unrelated external digital profiles.<\/p>\n<p data-path-to-node=\"6\">Beyond static URL landing traps, cybercriminals are maintaining heavy outbound email spam vectors to coerce targets into deploying manual wire transfers or engaging with bad tracking links. The inbound messages implement optimized subject lines and high-pressure language to build psychological engagement. In an analyzed case file, sports fans received targeted emails offering premium football analytics services and automated match winner probability distributions.<\/p>\n<p data-path-to-node=\"7\">A core indicator of the cyber risk is the artificial construction of an intense sense of time urgency, forcing recipients to process immediate checkouts to lock in limited availability spots. The interface asks for a manual payment of A$200 to grant access keys to the data analytics group, exposing sports consumers to irreversible capital loss.<\/p>\n<p data-path-to-node=\"7\">&#8220;Since the start of the tournament, scammers have increasingly focused on the ways fans engage with the event online, as watching matches today requires only an internet connection and a device,&#8221; explained Olga Altukhova, Senior Web Content Analyst at Kaspersky.\u00a0 She adds: &#8220;As a result, criminal activity continues to grow, as reflected in the fraudulent websites we observe offering streaming and betting services in multiple languages. We recommend that users stick to official broadcasts to help protect their data and finances.&#8221;<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>New report detected a cluster of at least 336 unique web domains engineered specifically to impersonate and mimic official World Cup resources. Following the official launch of the World Cup 2026 tournament on June 11, malicious actors have aggressively scaled up automated social engineering operations, leveraging fan excitement to extract liquid funds and hijack private [&hellip;]<\/p>\n","protected":false},"author":257,"featured_media":452930,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":[],"meta":{"_acf_changed":false,"_breakdance_hide_in_design_set":false,"_breakdance_tags":"","footnotes":""},"categories":[29324],"tags":[29380],"audience-intent":[],"content-types":[],"country":[],"entity":[],"persona":[],"class_list":["post-452929","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-cybersecurity"],"acf":[],"_links":{"self":[{"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/posts\/452929","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/users\/257"}],"replies":[{"embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/comments?post=452929"}],"version-history":[{"count":0,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/posts\/452929\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/media\/452930"}],"wp:attachment":[{"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/media?parent=452929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/categories?post=452929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/tags?post=452929"},{"taxonomy":"audience-intent","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/audience-intent?post=452929"},{"taxonomy":"content-types","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/content-types?post=452929"},{"taxonomy":"country","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/country?post=452929"},{"taxonomy":"entity","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/entity?post=452929"},{"taxonomy":"format","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/format?post=452929"},{"taxonomy":"persona","embeddable":true,"href":"https:\/\/menatech.net\/en\/wp-json\/wp\/v2\/persona?post=452929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}