Can you be sure you’re secure during the 2022 FIFA World Cup?
With the 2022 FIFA World Cup underway, do we fully understand the security risks of online betting? Tom McVey, solution architect at Menlo Security, discusses the challenges
About $35bn is set to be wagered on the 2022 FIFA World Cup, up 65% on the previous event, according to analysts at Barclays Plc. Apparently, the scheduling of the event at the end of the year, rather than during the summer when many people take holidays, and the kick-off times for games are a huge advantage this time round. Betting companies are also enjoying the fact that there have been several tied games so far in the tournament, which tends to favour them rather than punters who usually bet on wins.
The fact is the bookies are set to make a fortune. You only need to do a quick search online and you will find hundreds of opportunities, from free bets to welcome offers to open a new account. Driven by easy online access, mobile apps and social media, the growth in online gambling saw a surge during the pandemic. Convenience and ease of use is an attractive combination.
What’s worrying, however, is the level of trust that people place in online betting sites. Doing anything online has security risks of course, but online gambling can be particularly tempting, which means that often these are overlooked or ignored. Even for the experienced gambler, confident in their preferred sites, the risks are high. For those who plan to set up accounts perhaps for the first time, or reactivate old ones, it can be a minefield, so a few words of caution.
Safety first
Security risks by their nature are subtle and innocuous, leaving most people unprepared. Treat any sites or apps with caution – many are unregulated and remember that you are often required to provide extremely confidential information, such as credit card information and account numbers.
Cybercriminals are looking to get their hands on this information, so look out for phishing emails and smishing (texts to your mobile) that use clever social engineering techniques to trick people into visiting fake or fraudulent sites and disclosing passwords and personal details (including payment details). Scammers can also use techniques to steal your identity or clone accounts so regularly check activity, and be wary of calls, texts or messages that appear to be from your betting firm.
Like the banks, betting organisations also need to show they are doing their bit to reassure customers, demonstrating that cybersecurity is a top priority and actively contributing towards intelligence and information sharing.
The general rule is to be over-cautious at all times, especially at a time when money is tight. A recent poll we conducted highlighted growing concerns over the financial risks of online scams as the cost-of-living crisis grows, with over half of respondents worried about money being stolen.
Five top tips:
1. Be suspicious of unsolicited emails or messages – and don’t click on links or attachments.
2. If you do place a bet, use legitimate betting/gambling sites. The risk of illegal sites embedded with malware will be higher as cybercriminals take advantage of World Cup fever.
3. Delete phishing emails inviting you to take advantage of offers or lure you in with big free bets. Always question the legitimacy of apps or sites launched during the event.
4. Use strong passwords for online accounts – and never reveal your password to other people.
5. Check your browser is secure – look out for the padlock symbol and a web address starting with https:// and always log out of sites afterwards if you are using a public device.
Tom McVey is a solution architect at Menlo Security for the EMEA region. He works closely with customers to meet their technical requirements and architects web and email isolation deployments for organisations across different industries. Prior to Menlo Security, he previously worked for LogRhythm and Varonis.