More than 600 fake IPL ticketing sites and over 400 malicious streaming links have reportedly been detected during the ongoing tournament season.
Cybersecurity researchers at CloudSEK found several fake websites pretending to sell IPL tickets this season. These websites are designed to look almost exactly like real ticket booking platforms.
According to the report titled Hit Wicket: Inside The Expensive Web of Scams Targeting Millions of IPL Fans This Season, scammers are copying logos, colours, fonts, and website layouts from trusted platforms like BookMyShow and District. Because the websites look professional and familiar, many users believe they are genuine.
These fake websites also use tricks such as countdown timers, which show "sale ending soon" or messages like "Only 3 seats left", which makes people go for quick payments.
ALSO READ | Lionel Messi Felt 'Claustrophobic' During Kolkata Chaos, Claims GOAT Tour Organiser Satadru Dutta
The scammers promote these fake ticket websites heavily on social media platforms like Instagram and Facebook through reels, posts, and even paid advertisements. Some of these fake sites are also optimised to appear high in Google search results when users search terms like "IPL 2026 tickets" or "IPL match booking".
Here's how scammers target people
Once a fan opens the fake website, the process appears similar like other authentic websites. Users are asked to select seats and enter details such as their name, phone number, and email address. They are then directed to make payments through UPI, debit or credit cards, QR codes, or online payment gateways.
After the payment is completed, victims receive a confirmation email along with a PDF ticket attachment. The ticket often looks real and includes seat numbers, IPL branding, booking IDs, and even QR codes or barcodes. However, these booking numbers are fake, and the QR codes do not work at the stadium entry gates.
Fake domains
Some of the fake domains related to IPL tickets are bookmyshow-ipl-ticket[.]com, bookmyshowticket[.]com, bookmy-show[.]com, book-ipl-ticket-2026[.]online, ipl-tickets-booking[.]live and more.
Cyber fraud
Researchers also warned that personal details collected through these fake websites, including names, phone numbers, and email addresses, may later be sold to other cybercriminal groups.
The panel also allowed fraudsters to change ticket prices instantly. Researchers said operators could raise prices for high-demand IPL matches and lower them for less popular games.
Another major finding was the use of Meta Pixel, a tracking tool connected to Facebook and Meta advertising systems. This tool helped scammers monitor how many people clicked on ads, filled forms, or completed payments on the fake websites.
Malware websites
Not all IPL scams ask fans to directly pay money. In many cases, scammers only need users to click on a fake "free live streaming" link. Every IPL season, millions of fans search for free streaming websites because they either cannot afford paid subscriptions or cannot access official streaming services.
Cybercriminals are taking advantage of this demand by creating fake streaming platforms that appear genuine at first glance.
Once users open the website, it looks like a normal streaming platform with match schedules, team logos, and video quality options such as HD or High Quality. However, the site is filled with hidden redirects, pop-up ads, and malicious scripts. Even clicking on a logo or "Play Stream" button can secretly redirect users to dangerous pages.
Researchers said these sites use tracking scripts to identify the visitor's device and operating system. For example, Mac users may receive malware designed specifically for macOS systems, while Windows users may be redirected to different malicious downloads.
Researchers said the malware silently collected system details, passwords, browser data, cookies, and cryptocurrency wallet information.
Researchers found that the malware particularly targeted cryptocurrency users. It searched for over 100 crypto wallet extensions and desktop wallet applications, including Ledger Live, Exodus, Atomic Wallet, and Trezor Suite.
Essential Business Intelligence, Continuous LIVE TV, Sharp Market Insights, Practical Personal Finance Advice and Latest Stories — On NDTV Profit.