Major sporting events such as the Super Bowl, World Series, and March Madness serve as fertile ground for cybercriminals seeking to exploit unsuspecting individuals. These events can attract malicious actors leveraging fake URLs resembling legitimate sports betting and news sites or phishing emails that incorporate sports-related terms to lure victims into providing sensitive information.
Recent insights from DNSFilter’s research team highlight the dynamics of these cyber threats and offer actionable advice for individuals aiming to safeguard themselves against such scams.
Escalating Threats in Sports Betting Scams
As significant sports events approach, a notable uptick in malicious gambling and betting traffic is observed. These fraudulent sites are engineered to deceive users into divulging personal details or financial information. The nature of gambling as a vice makes it particularly susceptible to exploitation, especially during live sporting events. This urgent, real-time environment fuels opportunities for criminals through live streaming and betting dynamics.
The severity of sports betting scams prompted the FBI to establish the Crime and Corruption in Sport and Gaming (CCSG) program. This initiative focuses on detecting and combating criminal enterprises related to sports while collaborating with governing bodies, sports leagues, independent watchdogs, and international law enforcement to address illegal gambling and sports betting practices.
Data Insights on Gambling Threats
DNSFilter’s analysis of gambling-related traffic—both legitimate and illegitimate—reveals striking trends. For instance, on Super Bowl day, DNSFilter registered a 57% increase in the blocking of malicious betting content compared to the entire NFL postseason. Similar patterns were recorded during Super Bowl LVIII and this past year’s March Madness.
With sports betting now legalized in 38 states, including online platforms in 30 of these, there has been a 71% rise in daily traffic to gambling sites, far surpassing the 16% overall growth in traffic observed on the DNSFilter network over the past year.
This year’s Super Bowl also saw significant spikes in illegal streaming and torrenting related to counterfeit streaming sites, surpassing previous averages by 15%. Notably, NFL-related domains exhibited heightened risks, particularly with spikes in gambling and streaming-related activities, alongside potential phishing attempts targeting fans and bettors. The frequency of domain names containing “football” surged following critical events like the Super Wild Card Weekend and Super Bowl Sunday.
DNSFilter recorded concerning trends during March Madness, with malicious basketball-related domains experiencing a 552% increase on March 6 compared to the previous 90-day average. Meanwhile, domains incorporating “gamble” or “gambling” saw a 442% rise on the same date. From March 4-6, domains featuring “bet” increased by 53%, and on March 7, those with “march” in the title spiked 280% over average levels, coinciding with gambling activity surges.
Corporate Vigilance Required
Significantly, much of the observed malicious traffic was traced back to corporate networks. This underlines the need for businesses to remain vigilant, as employees may inadvertently access harmful gambling or streaming sites while using corporate devices. Illegal gambling and streaming platforms frequently overlap with phishing risks, suggesting that streaming sites could also harbor malware or links to phishing pages. Developing a robust security policy can address these issues effectively.
Training employees to recognize and avoid suspicious links is essential, particularly those from unsolicited emails exhibiting dubious sender addresses. Implementing protective DNS solutions is another vital step, effectively shielding users by filtering DNS queries and blocking known harmful domains. Understanding employee usage of corporate devices can guide organizations on what activities to restrict.
Best Practices for a Secure Betting Environment
Marquee sporting events increasingly attract bad actors aiming to deceive sports fans for financial gain. Employees engaging with online betting or streaming during work hours can inadvertently expose their organizations to significant risks. However, through ongoing employee education and the integration of protective DNS services, businesses can foster a safer online landscape during high-risk events and throughout the year. This proactive approach assists in mitigating exposure to the numerous threats escalating in today’s digital environment.
