Hackers linked to Iran are likely to target World Cup fans and the event’s infrastructure, according to a report by ynet Global.
BDO Head of Cybersecurity for EMEA Ophir Zilbiger said the conflict between Iran and the United States is likely to increase the already substantial amount of fraud attempts that target all major sporting events, per the report.
Hackers are likely to target World Cup attendees through cyberattacks and online fraud such as fake tickets, scam travel packages that aim to steal credit card details, and malicious streaming apps that claim to offer live streams of the event but install malware or surveillance tools, according to the report.
They are also expected to target national infrastructure such as airports, transportation systems and other infrastructure through ransomware, distributed denial-of-service (DDoS) attacks and influence campaigns aimed at public opinion, the report said.
Hackers may also attack third-party sites to penetrate secure systems, according to the report.
Zilbiger urged consumers to avoid clicking unfamiliar links, entering credit card details on unfamiliar sites, or following instructions in text messages or emails without first ensuring that those communications are legitimate, per the report.
Advertisement: Scroll to Continue
PYMNTS reported in March that this year’s World Cup will be a global payments stress test, in part because it will be the largest edition in the tournament’s history. The event will run from June 11 to July 19; span 16 host cities across the U.S., Canada and Mexico; and host 48 teams and 104 matches.
The World Cup will also welcome about 6.5 million fans into stadiums and a larger audience via media channels.
PYMNTS also reported in March that the Middle East conflict raises cyber risk for businesses. Cyberattacks, which can often be conducted by non-state aligned individuals or ideologically motivated groups, are growing increasingly likely in times of heightened geopolitical confrontation.
In June 2025, following the U.S. bombing of sites associated with Iran’s nuclear program, four U.S. federal agencies said that fraudsters linked to Iran may launch cyberattacks on organizations in the U.S., especially those involved with critical infrastructure.
The agencies suggested that organizations read a Cybersecurity Information Sheet to review fraudsters’ commonly used techniques, assess their own cybersecurity weaknesses, update their incident response plans and harden their cyber defenses.