Threat actors are spoofing the FIFA website through a process known as...

Threat actors are spoofing the FIFA website through a process known as “typo squatting”. Typo squatting relies on Internet users making common typos when visiting a URL. Spoofing FIFA’s official website (www.fifa.com) allows threat actors to collect personally identifiable information (PII) entered by users into the fake website, including name, home address, phone number, email address, and banking information. Using a minor misspelling, such as fiffa[.]com, or alternative top-level domains, such as .org rather than .com, threat actors mimic the legitimate URL. They may also register illegitimate websites such as jobs-fifa[.]com to impersonate legitimate subdomains. While there are at least a dozen known illegitimate domains, users should anticipate the generation of additional fake domains leading up to, and throughout, the 2026 World Cup.

Learn more about how the scam works and review recommendations on how to protect yourself: https://www.ic3.gov/PSA/2026/PSA260527