Cyber Criminals Imitate FIFA Website for Phishing: Kaspersky

Published: 09th July 2014 06:40 PM  |   Last Updated: 09th July 2014 06:40 PM   |  A+A-


MUMBAI: Trying to cash in on the ongoing football World Cup frenzy, cyber criminals have come up with a webpage that imitates the original FIFA website, which has been designed for phishing activities, according to Russian cyber security solutions provider Kaspersky.

Phishing is a form of Internet fraud in which criminals create a fake copy of a popular site (an email service, an Internet banking website, a social networking site) and lure users to these rogue web pages, who unsuspectingly enter their log-in information.      

Kaspersky noted that cyber criminals used the ban imposed by FIFA on controversial Uruguayan forward Luis Suarez for the phishing activities.            

Suarez was banned for biting Italian defender Giorgio Chiellini.      

The web page imitates the official FIFA website and prompts visitors to sign a petition in defense of Suarez.         

Those fans who are unhappy about the Uruguayan's disqualification and add their details to the petition could potentially end up on a spam mailing list, on the receiving end of a malicious attachment or are even subjected to a targeted attack, the firm said in a statement.      

"The phishing page matches the design of the official website and all links on it redirect users to FIFA's official site, The phishing domain was created on June 27, 2014," it said.           

To sign the petition, the user needs to fill up a form by entering his or her name, country of residence, mobile phone number and email address. After filling out the 'petition' form, victims are encouraged to share a link to the page with their friends on Facebook.         

"Unsuspecting fans shared links to the fake petition on their Facebook pages. This enabled the phishing link to spread widely across Facebook in just a couple of days.   

Messages with links to the phishing page were also seen on dedicated forums, which is probably how users originally reached the offending page," Kaspersky said.         

According to the Whois database, it was registered in the name of a person residing in London. The data collection form was created using Google.Docs.           "Armed with users' email addresses and telephone numbers, cyber criminals can conduct targeted attacks involving banking Trojans for computers and mobile devices.       

"This technique is used to get round two-factor authentication in online banking systems in cases where a one-time password is sent via SMS," Kaspersky Lab Content Analyst Nadezhda Demidova said.

Stay up to date on all the latest Nation news with The New Indian Express App. Download now
(Get the news that matters from New Indian Express on WhatsApp. Click this link and hit 'Click to Subscribe'. Follow the instructions after that.)


Disclaimer : We respect your thoughts and views! But we need to be judicious while moderating your comments. All the comments will be moderated by the editorial. Abstain from posting comments that are obscene, defamatory or inflammatory, and do not indulge in personal attacks. Try to avoid outside hyperlinks inside the comment. Help us delete comments that do not follow these guidelines.

The views expressed in comments published on are those of the comment writers alone. They do not represent the views or opinions of or its staff, nor do they represent the views or opinions of The New Indian Express Group, or any entity of, or affiliated with, The New Indian Express Group. reserves the right to take any or all comments down at any time.

flipboard facebook twitter whatsapp