Threat actors are conducting large-scale pre-tournament campaigns ahead of the 2026 FIFA World Cup using AI-generated phishing sites, mobile malware, and AiTM relay attacks. Attacks target both fans through social media and messenger apps with promises of free streaming and tickets, and event organizers through spoofed employee handbooks and fake job postings. Defenders note that MFA alone cannot protect against these sophisticated relay attacks that intercept one-time codes in real-time.

Why it matters in Western Canada: Canadian public sector, post-secondary, and organizational staff supporting event operations across North America face direct targeting risk. Organizations in hosting cities and their supply chains should anticipate credential theft and data exfiltration attempts using World Cup-themed social engineering.

---

Summary generated from the original advisory. Read the full source: arctic-wolf