Check Point Warns of Cyber Threats Targeting 2026 FIFA World Cup, Reveals Blended Cyber and Non-Cyber Risks

Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a pioneer and global leader in cybersecurity solutions, has released new research from its Exposure Management Research team on the cyber and financial crime threat landscape surrounding the upcoming 2026 FIFA World Cup. Attack infrastructure is already operational ahead of the tournament's kickoff, poised to exploit the global scale, surge in transactions, and heightened urgency of fans.

The findings indicate a significant trend: attackers are strategically pre-positioning across financial systems, transportation infrastructure, and the betting ecosystem, ready to strike at moments of maximum disruption, fraud, and attention.

Notably, the research reveals a convergence of cyber and non-cyber threats. Scams, ransomware, disinformation, and organized financial crimes including money laundering and human trafficking are targeting an interconnected ecosystem around the World Cup.

Most Targeted Industries

The most impacted industries are financial services, transportation/hospitality, and gambling—the core sectors driving World Cup activities.

- Financial services: handling surging international payments for tickets, travel, and betting.
- Transportation/hospitality: managing millions of movements and accommodations with near-zero downtime tolerance.
- Gambling platforms: facing real-time betting and a flood of new users.

Specific threats identified include:

1. Pre-kickoff Fraud Infrastructure
Fraudulent FIFA-themed domains surged in April 2026. In transportation/hospitality, 56% of malicious domains target accommodation and travel services, where fan spending is highest. Attackers are targeting fans planning to attend, maximizing exposure before the event begins.

2. Ecosystem-Wide Trust-Eroding Scams
Fake ticket sales sites and booking platforms steal personal and payment information, mimicking tactics seen in Qatar 2022 and Paris 2024. Cybercrime at global events is now repeatable and industrialized, eroding trust in legitimate brands and platforms.

3. FIFA Partners at Risk of Mass Email and Payment Fraud
Over one-third of official partners lack robust DMARC protection, drastically increasing business email compromise (BEC) risk. Attackers can impersonate trusted organizations to redirect payments across sponsorships and supply chains, causing huge financial losses and disruptions.

4. Business Disruption at Record Levels
Ransomware and identity-based attacks are already targeting airlines, airports, and hotel chains worldwide. Even short outages during matches could cause flight cancellations and stranded attendees, leading to chaos, reservation system failures, and public safety concerns. Cyber risk now directly translates into operational continuity and public safety emergencies.

5. Expanding Financial Crime Including Human Trafficking
Security authorities warn that increased visitor numbers and cross-border transactions create opportunities for money laundering and human trafficking networks. Banks, fintechs, casinos, and payment processors face heightened pressure as threats expand beyond cybercrime into organized crime.

6. Geopolitical and Organizational Cyber Attack Coordination
State-linked actors are expected to launch DDoS attacks, operational disruptions, and AI-powered disinformation campaigns. The World Cup is becoming a global digital battlefield where cyber incidents instantly escalate into reputational and geopolitical crises.

7. New Attack Surfaces: Cryptocurrency Scams and Fake Mobile Apps
World Cup-themed crypto tokens show signs of "rug pull" scams. In gambling, fake mobile apps have surged approximately 60-fold compared to non-event periods. Fans are simultaneously targeted across payment, investment, and betting touchpoints, extending threats beyond traditional fraud into speculative financial losses.

Summary: Warnings for 2026 FIFA World Cup Stakeholders

- FIFA/Organizers: Cyber threats are now comprehensive and interconnected, with potential real-time cascading impacts on operations, partners, and public trust.
- Businesses: Confirmed risks include operational shutdown, financial loss, reputational damage, and regulatory exposure.
- Global Fans: From travel booking to betting, users face scams, fraud, and information theft at every point.

Manasa Pisipati, Cyber Threat Intelligence Analyst at Check Point's Exposure Management Research, stated: "This research reveals that the threat landscape around the World Cup is already active and highly organized. Attackers have built infrastructure before the tournament begins, waiting to exploit trust, urgency, and peak global attention. Organizations need to focus on securing identities, payments, and critical operations. Fans should only use verified platforms, avoid unofficial crypto and betting, and be wary of deals that seem too good to be true. In an event watched by billions, a single cyber incident can have global consequences. That's why prevention must be prioritized."