# fifa-com.store — SUSPICIOUS

> fifa-com.store is a fake FIFA site hosting credential theft phishing; security tools currently show 0/95 detections on VirusTotal. Do not enter login details.

## Summary
PhishDestroy identifies fifa-com.store as an active brand-impersonation domain that mimics the official FIFA website to harvest login credentials. When victims attempt to sign in, their usernames and passwords are sent to backend servers controlled by attackers, enabling account takeovers and potential access to linked financial or personal data.


This domain was flagged with zero detections out of 95 VirusTotal engines as of today, resolving to 188.114.96.3 via Let’s Encrypt SSL. The seed record (bc00ad) shows creation under an anonymizing registrar, confirming active use in credential-theft campaigns against sports fans ahead of major tournaments.


If you visited fifa-com.store DO NOT enter any credentials. Clear browser cookies for fifa.com and run a full antivirus scan. Report the domain to your security team or use PhishDestroy’s public API to notify others. Change passwords only after verifying the legitimate fifa.com domain ends in .com and shows a green padlock.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/98b9403c-6d07-495e-8075-52f99cf7e607
- PhishDestroy: https://phishdestroy.io/domain/fifa-com.store/
- LLM endpoint: https://phishdestroy.io/domain/fifa-com.store/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/fifa-com.store/
Last updated: 2026-03-21