FIFA World Cup phishing domains

Newly registered lookalikes - tracked daily

FIFA World Cup phishing domains

Newly registered lookalikes - tracked daily

Website: fifa.com
About: AIEvent-driven phishing target around the 2026 World Cup (USA / Canada / Mexico). Lures impersonate official ticketing, hospitality packages, and FIFA recruitment ('careers' / 'HR') pages to harvest payment-card and personal data; bare fifa.<tld> look-alikes and worldcup-2026 ticket-resale domains are the recurring pattern (per the FBI IC3 PSA, May 2026).

Recently registered domains — may be used for phishing. Screenshots show parking pages while domains warm up. Use for Threat Hunting or watchlists.

Last check (UTC)	First seen (UTC) ▾	URL	Screenshot	Flags	Details

Recently registered domains — may be used for phishing. Screenshots show parking pages while domains warm up. Use for Threat Hunting or watchlists.

URL	Screenshot	Details

AIHow to verify a real FIFA World Cup URL

Legitimate FIFA World Cup URLs always end in fifa.com (e.g. www.fifa.com, account.fifa.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not FIFA World Cup.
The domains listed above were registered within the last 7 days. New-domain age is itself a signal — FIFA World Cup has owned fifa.com for years; brand-new look-alikes are almost never legitimate.
If you got the link from email, SMS, or social media, do not click it. Open fifa.com from your browser bookmark or type the domain manually.
Real FIFA World Cup pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.