Tuesday , June 25 2024
ticket

338 fraudulent Olympics games ticketing websites

infosecbulletin 1 week ago Alert, Hot Topic

Proofpoint found a fake website selling tickets for the Paris 2024 Summer Olympic Games. The website, “paris24tickets[.]com,” claimed to be a secondary marketplace for sports and live event tickets.

It appeared as the second sponsored search result on Google, right after the official website, when searching for “Paris 2024 tickets” and similar terms. Proofpoint confirmed with official sources in France that the website was fraudulent. proofpoint’s Takedown Team promptly worked with the domain registrar to suspend the website.

LockBit Claims 33 TB of US Federal Reserve Data

By infosecbulletin / Monday , June 24 2024
LockBit claimed that it breached Federal Reserve Board (Federalreserve.gov), the central banking system of the United States and exfiltrated 33...
Read More
LockBit Claims 33 TB of US Federal Reserve Data

Indonesia’s National data center compromised, $8M ransom demand

By infosecbulletin / Monday , June 24 2024
Cyber attack compromised Indonesia's national data center, causing trouble with immigration checks at airports. Attacker demanded an $8 million ransom,...
Read More
Indonesia’s National data center compromised, $8M ransom demand

ESET Issues Security Patch for Privilege Escalation Flaw

By infosecbulletin / Sunday , June 23 2024
ESET Issued security patch for privilege escalation flaw in its Windows security products. This flaw, called CVE-2024-2003 (CVSS 7.3), was...
Read More
ESET Issues Security Patch for Privilege Escalation Flaw

Hacker offer zero-day RCE exploit of Atlassian Jira for Sale

By infosecbulletin / Saturday , June 22 2024
A threat offer to sell a zero-day exploit for Atlassian's Jira in a underground forum. This exploit can be used...
Read More
Hacker offer zero-day RCE exploit of Atlassian Jira for Sale

US bans Kaspersky software over Russia ties

By infosecbulletin / Friday , June 21 2024
The US plans to ban the sale of Kaspersky antivirus software due to its alleged ties to the Kremlin. Gina...
Read More
US bans Kaspersky software over Russia ties

China-linked spies target Asian Telcos since 2021

By infosecbulletin / Friday , June 21 2024
A group believed to be linked to China has hacked multiple telecom operators in an Asian country since 2021, according...
Read More
China-linked spies target Asian Telcos since 2021

Azad selected expert reviewer for CISA Review Manual 28th Edition

By infosecbulletin / Thursday , June 20 2024
Certified Information Systems Auditor (CISA) is a globally recognized professional certification for information systems audit, control, and security. It's offered...
Read More
Azad selected expert reviewer for CISA Review Manual 28th Edition

Attackers Target AWS Vaults, Buckets, and Secrets

By infosecbulletin / Thursday , June 20 2024
DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed...
Read More
Attackers Target AWS Vaults, Buckets, and Secrets

CISA released Guidance for Modern Approaches to Network Access Security

By infosecbulletin / Wednesday , June 19 2024
CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s...
Read More
CISA released Guidance for Modern Approaches to Network Access Security

CISA Releases One Industrial Control Systems Advisory

By infosecbulletin / Tuesday , June 18 2024
On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security...
Read More
CISA Releases One Industrial Control Systems Advisory

According to the French Gendarmerie Nationale, they have found 338 fraudulent Olympics ticketing websites. Of these, 51 have been shut down and 140 have received formal notices from law enforcement.

The Proofpoint researchers found a website with a homepage that listed several Olympic events. If users clicked on a sport icon, they would be directed to a ticketing page where they could select tickets and make payments. The site also seemed to offer the option to create accounts for buying and selling tickets.

The website design looked like other popular ticketing sites, which made visitors feel that the site was trustworthy.

The people running this website may have tried to steal money from those buying or selling Olympic tickets. They might have also taken personal information such as names, contact details, and credit card information from ticket buyers.

The domain was mainly spread through ads in search results. Although it was not widely seen in email campaigns, it was found in a few emails. The sender of these emails pretended to offer “discounts” on tickets that might interest the recipient. Researchers cannot confirm how the sender got the emails, but it’s possible that users provided their email address when signing up or trying to buy tickets on the website.

Check Also

VMware

VMware Patche vCenter Server, Cloud Foundation and vSphere ESXi

VMware has fixed critical security flaws in Cloud Foundation, vCenter Server, and vSphere ESXi. These …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2024, All Rights Reserved InfoSecBulletin