{"id":20431,"date":"2022-11-29T11:39:06","date_gmt":"2022-11-29T16:39:06","guid":{"rendered":"https:\/\/me-en.kaspersky.com\/blog\/world-cup-2022-related-threats\/20431\/"},"modified":"2022-11-29T23:45:27","modified_gmt":"2022-11-29T19:45:27","slug":"world-cup-2022-related-threats","status":"publish","type":"post","link":"https:\/\/me-en.kaspersky.com\/blog\/world-cup-2022-related-threats\/20431\/","title":{"rendered":"Soccer Cyberthreats"},"content":{"rendered":"<p>Just in case you haven\u2019t noticed, Qatar is currently hosting the 22<sup>nd<\/sup> FIFA World Cup (from November 20 to December 18). Cyberfraudsters could hardly pass up such an opportunity. The 2018 World Cup in Russia was watched by 3.6 billion people (more than half of the world\u2019s population over four years old), and the viewing figures of Qatar\u2019s World Cup are unlikely to be lower. Having analyzed the main cyberthreats targeting fans at major sporting events in recent years, we can only recommend you be vigilant during the World Cup.\n<\/p>\n<h2>Fake sites and apps<\/h2>\n<p>\nIn the runup to all major sporting feasts in recent years, our experts have observed upticks in registrations of domains based on the names of the respective events. Most of these sites were used for fraud, such as offering <a href=\"https:\/\/usa.kaspersky.com\/blog\/rio2016-spam-fraud\/7189\/\" target=\"_blank\" rel=\"noopener\">fake tickets<\/a> or <a href=\"https:\/\/securelist.com\/adware-or-money-loss-instead-of-your-favorite-world-cup-game\/63716\/\" target=\"_blank\" rel=\"noopener\">free live broadcasts<\/a>.<\/p>\n<div id=\"attachment_46450\" style=\"width: 904px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2022\/11\/29204618\/world-cup-2022-related-threats-1.png\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-46450\" class=\"size-full wp-image-46450\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2022\/11\/29204618\/world-cup-2022-related-threats-1.png\" alt=\"A phishing page offers a chance to win 2 FIFA tickets\" width=\"894\" height=\"576\"><\/a><p id=\"caption-attachment-46450\" class=\"wp-caption-text\">A phishing page offers a chance to win 2 FIFA tickets<\/p><\/div>\n<p>This year\u2019s World Cup has been no exception. By the time it kicked off, experts had <a href=\"https:\/\/www.computerweekly.com\/news\/252527152\/Cyber-criminals-have-World-Cup-Qatar-2022-in-their-sights\" target=\"_blank\" rel=\"nofollow noopener\">uncovered<\/a> multiple fraudulent pages on social networks, and more than 170 domains posing as official World Cup resources.<\/p>\n<p>Most are phishing sites looking to steal user data, but alongside the traditional scams (ticket giveaways, souvenir sales), some new <a href=\"https:\/\/usa.kaspersky.com\/about\/press-releases\/2022_kaspersky-names-top-5-world-cup-cyber-scams\" target=\"_blank\" rel=\"noopener\">cryptocurrency-based scams<\/a> have been added. Soccer fans are invited to invest in new tokens created specially for the tournament, or to bet on the results with payouts in crypto or as NFT art. Of course, to receive your \u201cwinnings\u201d, you have to share your cryptowallet details.<\/p>\n<div id=\"attachment_46451\" style=\"width: 1161px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2022\/11\/29204710\/world-cup-2022-related-threats-2.png\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-46451\" class=\"size-full wp-image-46451\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2022\/11\/29204710\/world-cup-2022-related-threats-2.png\" alt=\"An example of a World Cup-related crypto scam\" width=\"1151\" height=\"643\"><\/a><p id=\"caption-attachment-46451\" class=\"wp-caption-text\">An example of a World Cup-related crypto scam<\/p><\/div>\n<p>Mobile apps are another classic mode of attack, especially on Android users: by the start of the World Cup, more than 50 instances of mobile malware had been <a href=\"https:\/\/www.computerweekly.com\/news\/252527152\/Cyber-criminals-have-World-Cup-Qatar-2022-in-their-sights\" target=\"_blank\" rel=\"nofollow noopener\">detected<\/a> that either plant <a href=\"https:\/\/securelist.com\/olympicdestroyer-is-here-to-trick-the-industry\/84295\/\" target=\"_blank\" rel=\"noopener\">malicious software<\/a> on your device, ask you to pay for a bogus ticket or broadcast, or steal your personal data \u2014 passwords, mail accounts, card numbers, and the like.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kisa-generic-2\">\n<p>\u00a0<\/p>\n<p>A <a href=\"https:\/\/www.pipelinepub.com\/news\/fans-using-mobile-apps-during-sporting-events-more-at-risk-for-malware\" target=\"_blank\" rel=\"nofollow noopener\">study of past championships<\/a> indicates that the victims of sports-related scams are typically casual fans: folks looking for streaming sites or installing sports apps for the first time. Therefore, in addition to our standard advice (never visit suspicious sites or download suspicious applications), we would add another useful tip: if you\u2019re a novice, ask a friend who\u2019s long been into sports. They\u2019ll be able to suggest the best places for live streaming or placing bets, which will help you avoid fly-by-night sites and fraudulent apps.\n<\/p>\n<h2>Privacy issues<\/h2>\n<p>\nBut even official apps don\u2019t guarantee protection against personal data leaks. On the eve of the current World Cup, warnings were already sounding about privacy issues in apps that visitors <a href=\"https:\/\/www.politico.eu\/article\/qatar-world-cup-app-data-warning\/\" target=\"_blank\" rel=\"nofollow noopener\">to Qatar have to install<\/a>. Similar vulnerabilities making it possible to spy on users were found in <a href=\"https:\/\/www.theregister.com\/2022\/01\/19\/olympics_app_vulnerabilities_censorship\/\" target=\"_blank\" rel=\"nofollow noopener\">Chinese apps<\/a> that guests of this year\u2019s Winter Olympics were required to install.<\/p>\n<p>But if you think such problems affect only certain countries, alas, personal data leaks happen everywhere. At the 2020 Summer Olympics in Tokyo (which ran in 2021 due to\u00a0 covid disruption), the <a href=\"https:\/\/english.kyodonews.net\/news\/2021\/07\/2ee279d7df2b-urgent-tokyo-olympic-ticket-purchaser-information-leaked-online.html\" target=\"_blank\" rel=\"nofollow noopener\">usernames and passwords<\/a> of those who\u2019d bought tickets were leaked, giving cybercriminals access to masses of personal data in fans\u2019 accounts: names, addresses, bank details. And in 2018, the official app of the Spanish soccer league, La Liga, was caught red-handed using microphone and GPS access on user devices to <a href=\"https:\/\/arstechnica.com\/information-technology\/2018\/06\/this-app-in-google-play-wants-to-use-phone-mics-to-enforce-copyrights\/\" target=\"_blank\" rel=\"nofollow noopener\">track down those watching pirated broadcasts<\/a>. La Liga, of course, denied eavesdropping on users, since the audio clips it recorded were encrypted. But how could this be checked, and who then did listen to these recordings?<\/p>\n<p>As such, a general security rule that applies even to official apps is to minimize their access to your personal data and to other apps and systems on your smartphone. If installing an app with extended privileges is mandatory in the host country, use a burner phone instead of your main device.\n<\/p>\n<h2>Beware of free Wi-Fi<\/h2>\n<p>\nDuring the 2016 Summer Olympics in Brazil, Kaspersky researchers <a href=\"https:\/\/securelist.com\/it-threats-during-the-2016-olympic-games-in-brazil\/75045\/\" target=\"_blank\" rel=\"noopener\">found<\/a> that around a quarter of Wi-Fi hotspots at competition venues had little or no security at all. Similar studies during the 2018 FIFA World Cup in Russia uncovered <a href=\"https:\/\/securelist.com\/fifa-public-wi-fi-guide\/85919\/\" target=\"_blank\" rel=\"noopener\">even more unprotected Wi-Fi networks<\/a>.<\/p>\n<p>So, if you\u2019re off to Qatar, take <a href=\"https:\/\/www.kaspersky.com\/blog\/public-wi-fi-security-tips\/41226\/\" target=\"_blank\" rel=\"noopener nofollow\">every precaution<\/a> when using public Wi-Fi:\n<\/p>\n<h3>1. Turn off automatic connection to Wi-Fi networks<\/h3>\n<p>\nAlso turn off Wi-Fi itself when not using it, and remove public Wi-Fi networks from the list of connections after using them. This will safeguard against connecting to poorly protected access points where your data could be intercepted by cybercriminals.\n<\/p>\n<h3>2. Carefully check the names of networks you connect to<\/h3>\n<p>\nFake hotspots might have similar names to the Wi-Fi network of your hotel or the cafe you\u2019re in. If you fail to spot a fake Wi-Fi network and connect to it, the data you transmit will end up in cybercriminal hands.\n<\/p>\n<h3>3.\u00a0Don\u2019t use public Wi-Fi for critical tasks<\/h3>\n<p>\nFor the same reasons, be doubly sure not to connect to dubious hotspots if you have to use a service where a data leak could be very costly, such as online banking. Better to access it through a well-protected home or corporate network. Although more expensive, even using mobile data to get online is safer than free public Wi-Fi.\n<\/p>\n<h3>4.\u00a0Use a VPN<\/h3>\n<p>\nIf there\u2019s simply no other option but to connect to an unknown Wi-Fi network, use a <a href=\"https:\/\/me-en.kaspersky.com\/vpn-secure-connection?icid=me-en_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____vpn___\" target=\"_blank\" rel=\"noopener\">security solution<\/a> with VPN technology to create an encrypted communication channel. For example, <a href=\"https:\/\/me-en.kaspersky.com\/vpn-secure-connection?icid=me-en_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____vpn___\" target=\"_blank\" rel=\"noopener\">Kaspersky Secure Connection<\/a>. KSC encrypts your data before forwarding it to the Wi-Fi router, so other users \u2014 not even the hotspot owner \u2014 can see what you\u2019re sending or where. And it\u2019s a good idea to configure your VPN to start up automatically on connecting to any public network.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"ksec\">\n","protected":false},"excerpt":{"rendered":"<p>How to watch the World Cup and not get scammed.<\/p>\n","protected":false},"author":2497,"featured_media":20433,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1486,9],"tags":[1187,76,1189,521,677,780],"class_list":{"0":"post-20431","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-threats","8":"category-tips","9":"tag-football","10":"tag-phishing","11":"tag-soccer","12":"tag-threats","13":"tag-vpn","14":"tag-wi-fi-safety"},"hreflang":[{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/world-cup-2022-related-threats\/20431\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/world-cup-2022-related-threats\/24934\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/world-cup-2022-related-threats\/10296\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/world-cup-2022-related-threats\/27485\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/world-cup-2022-related-threats\/25263\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/world-cup-2022-related-threats\/25579\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/world-cup-2022-related-threats\/28152\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/world-cup-2022-related-threats\/27417\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/world-cup-2022-related-threats\/34298\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/world-cup-2022-related-threats\/46448\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/world-cup-2022-related-threats\/19824\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/world-cup-2022-related-threats\/20444\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/world-cup-2022-related-threats\/29570\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/world-cup-2022-related-threats\/25625\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/world-cup-2022-related-threats\/31309\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/world-cup-2022-related-threats\/31018\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/me-en.kaspersky.com\/blog\/tag\/threats\/","name":"threats"},"_links":{"self":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/20431","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/2497"}],"replies":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=20431"}],"version-history":[{"count":3,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/20431\/revisions"}],"predecessor-version":[{"id":20435,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/20431\/revisions\/20435"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/20433"}],"wp:attachment":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=20431"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=20431"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=20431"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}