Kaspersky detected over 336 unique domains impersonating the official World Cup website, warning football fans to remain vigilant as cybercriminals exploit the global tournament to steal personal information and money. The cybersecurity firm says fraudulent streaming, betting, and phishing schemes have surged since the competition began.
Kaspersky detected over 336 unique domains impersonating the official World Cup website during tournament
With the World Cup 2026 kicking off on June 11, millions of football fans worldwide have turned to digital platforms to follow live matches. However, according to Kaspersky, the tournament has also become a prime opportunity for scammers, who are increasingly using fake websites and deceptive online services to target unsuspecting supporters.
Researchers identified at least 336 unique domains designed to mimic official World Cup resources. These fraudulent websites are part of a broader campaign involving World Cup scams that attempt to lure users into revealing sensitive information or making fraudulent payments under the guise of accessing match broadcasts or betting services.
One of the most common tactics involves fake streaming platforms claiming to offer free access to live World Cup matches. Visitors are encouraged to click a “Watch now” button before being prompted to register for an account. After completing registration, users are instructed to pay a cryptocurrency fee in exchange for so-called lifetime access to tournament broadcasts.
While the offer may appear legitimate, the scheme is designed to steal both personal registration details and cryptocurrency payments. Victims risk losing their funds while also exposing email addresses, passwords, and other sensitive information that may later be used in additional cyberattacks.
Kaspersky also identified fraudulent betting and football prediction platforms targeting sports enthusiasts looking to place wagers during the tournament. In one example, a Spanish-language website requested extensive personal information, including users’ names, email addresses, telephone numbers, and other identifying details during the account registration process.
Security experts warn that these World Cup scams present multiple risks beyond immediate financial losses. If victims reuse passwords across different online services, stolen credentials could allow attackers to access email accounts, financial services, or other personal platforms. Such credential theft remains one of the most common objectives behind modern phishing attacks.
In addition to fake streaming and betting websites, Kaspersky observed attackers using phishing emails to trick football fans into transferring money or clicking malicious links. These emails often feature persuasive subject lines, limited-time offers, or urgent language designed to pressure recipients into making quick decisions without verifying the source.
One campaign promoted football analytics services and promised accurate predictions of match winners. Recipients were encouraged to pay an A$200 fee to access exclusive betting insights. According to Kaspersky, these offers are intended to exploit fans hoping to improve their betting success, but payments made to such fraudulent services are unlikely to be recovered.
“Kaspersky detected over 336 unique domains impersonating the official World Cup website,” highlighting how rapidly cybercriminals adapt their tactics around globally recognised sporting events. Olga Altukhova, Senior Web Content Analyst at Kaspersky, said scammers are increasingly targeting the ways fans consume sporting content online, including live streaming and digital betting services.
She noted that because fans now only require an internet connection and a connected device to watch matches, attackers have expanded their operations across multiple languages and platforms to maximise the number of potential victims. She advised users to rely exclusively on official broadcasting services to protect both their personal information and financial assets.
To reduce exposure to phishing attacks, Kaspersky recommends verifying website addresses before entering personal information, carefully checking domain names for misspellings, and using only reputable streaming services. The company also advises enabling multi-factor authentication on important accounts and installing trusted cybersecurity software capable of detecting phishing websites, malicious attachments, and other online threats.
Kaspersky added that its latest consumer security solutions incorporate AI-powered scam protection to strengthen defence against increasingly sophisticated phishing campaigns. The company’s Kaspersky Premium solution recently received AV-Comparatives’ annual “Approved” certification in anti-phishing testing, recognising its effectiveness in identifying and blocking evolving online threats.
As the World Cup continues to attract billions of online interactions, cybersecurity experts urge football fans to exercise caution when accessing unofficial streaming services, betting platforms, or promotional offers, reminding users that protecting personal data begins with verifying the authenticity of every website they visit.