Cybercriminal activity is expected to rise as the 2026 World Cup approaches, driven by geopolitical instability, hyper-connectivity, and interdependence among critical infrastructure. The tournament’s global reach makes it attractive for politically motivated attackers. Interdependent digital systems can amplify impact, where a security failure at a third-party vendor could disrupt essential event operations such as broadcasting, transportation, and hospitality. Generative AI and deepfakes are likely to be used to scam fans. Security leaders face heightened risk because a single employee falling for a scam on a work device can expose the entire organization. Compromised devices can bypass perimeter defenses, access confidential data, and move laterally into core systems.
"When employees use their corporate devices, accounts or AI agents for personal activities such as hunting for World Cup tickets, booking travel or browsing personal emails, they become directly susceptible to the event-driven scams."
"If an employee falls for a phishing link, a fraudulent visa site hosting malware or their AI agent gets compromised by an indirect prompt injection on a work laptop, they aren't just risking their own personal data. That compromised device effectively turns an external attacker into an insider threat. Because the attacker inherits the employee's legitimate access, they can bypass standard perimeter defenses, access private and confidential data, move undetected through the system and potentially move laterally across the network and into core corporate systems."
"The tournament's notable reach makes it an attractive target for politically-motivated attackers. Interdependent digital systems may lead to widespread risks; for instance, a security failure at one third-party vendor could freeze essential event operations such as broadcasting, transportation and hospitality. Generative AI and deepfakes will likely be leveraged to scam fans."
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]