Suspicious
Phishings targeting FIFA World Cup
Suspicious and active websites
Phishings targeting Fifa
Suspicious and active websites
Active
7
New (7d)
5
Trend (7d)
—
Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.
| Last check (UTC) | First seen (UTC) ▾ | URL | Screenshot | Flags | Details |
|---|---|---|---|---|---|
| 2026-07-08 01:30 | 2026-07-04 13:01 | ![]() |
OpenPhish urlscan | Details | |
| 2026-07-08 01:30 | 2026-07-04 12:25 | ![]() |
urlscan | Details | |
| 2026-07-08 01:30 | 2026-07-03 21:14 | ![]() |
urlscan | Details | |
| 2026-07-08 01:30 | 2026-07-03 11:25 | ![]() |
urlscan | Details | |
| 2026-07-08 01:30 | 2026-07-02 22:19 | ![]() |
urlscan | Details | |
| 2026-07-08 01:30 | 2026-06-22 12:28 | ![]() |
urlscan | Details | |
| 2026-07-08 01:30 | 2026-06-17 18:01 | ![]() |
GSB TweetFeed | Details |
Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.
| URL | Screenshot | Details |
|---|---|---|
| http://fifaworldcupgiveaway.c…
OpenPhish urlscan |
![]() |
Details |
| https://fifashijiebeiguanwang…
urlscan |
![]() |
Details |
| https://fifaguanwangrukouzhon…
urlscan |
![]() |
Details |
| https://fifazuqiushijiepojieb…
urlscan |
![]() |
Details |
| https://fifaguanwangzhongwen.…
urlscan |
![]() |
Details |
| https://fifa55lux.com
urlscan |
![]() |
Details |
| http://fifa-careerhub.com
GSB TweetFeed |
![]() |
Details |
AIHow to verify a real FIFA World Cup URL
- Legitimate FIFA World Cup URLs always end in
fifa.com(e.g.www.fifa.com,account.fifa.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like.xyz/.top/.vip— is not FIFA World Cup. - The padlock icon proves TLS is active, not that the site is safe. Free DV certificates are issued to attackers in minutes; every active site listed above has a valid TLS certificate.
- If you got the link from email, SMS, or social media, do not click it. Open
fifa.comfrom your browser bookmark or type the domain manually. - Real FIFA World Cup pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.






