This website stores cookies on your computer. These cookies are used to collect information about how you interact with our website and allow us to remember you. To find out more about the cookies we use, see our privacy policy

Cybercriminals are exploiting the World Cup

Here's what we know and how you can protect yourself

The World Cup is under way and cybercriminals have launched attacks relating to the event. Our intelligence team has identified several attacks and have warned that a range of attacks are likely. These may include scams on tickets, Hayya cards, online streaming and fake crypto currency. 

Hackers use scams as entry points to try and steal your money, private data or other sensitive information. It’s also likely that some of these scams may contain malware, which can cause significant damage to your device.

These scams commonly appear in the form of fraudulent emails, SMS messages and sometimes websites. There have even been reports of malicious apps using World Cup branding to lure users.

We have highlighted some key actions you can take to stay extra vigilant at this time. 

Recommended Actions:

  • If you are purchasing a ticket or Hayya card, we strongly recommend that you obtain these through the official providers. Hackers are exploiting the demand for tickets, along with the fact that tickets are digital. Therefore, we recommend that you only purchase from legitimate outlets.
  • We recommend that you conduct thorough research before investing in any ‘limited edition’ World Cup crypto currency, as there’s a chance that this could be fake.
  • If you choose to stream the event, only use a legitimate, trusted streaming service.
  • Enable multi-factor authentication (MFA) on all of your applications, where possible.


Finally, take some time to review any emails or text messages you receive relating to the event, even if it appears to have been sent from a recognised sender. Remember, hackers often pose as trusted brands and scams can be hard to spot. We recommend that you take the time to analyse emails or SMS messages that you receive, especially if they are:

  • Emails or SMS messages relating to World Cup tickets. In particular, competitions, free tickets, deals or discounts.
  • Emails or SMS messages relating to betting on the event. In particular, free bets, offers or tips.
  • Any emails or SMS messages asking you to open documents, click links, or supply personal information.



Here's an example of a fake competition


Here's another example of an attack, asking recipients to download a document.


At DynaRisk we make it easy for individuals to protect themselves online.

We combine personal risk factors with external data and algorithms to determine an individual's level of risk online. Our solution not only tells someone what their risk level is, but also what to do about it.

We help companies protect their staff, clients and supply chain from cyber threats by enabling these people to take action for themselves.

If you’d like more information on how we can help you or your business, please email