Technology
Super Bowl scams surge in February and target your data
NEWYou can now listen to Fox News articles!
The Super Bowl is not only the biggest sporting event of the year, but it has also become one of the busiest scam seasons.
Every February, millions of Americans receive texts, emails and calls tied to the game, such as “Your ticket couldn’t be delivered,” “Your streaming account needs verification” or “Your betting account was locked.” At first glance, these messages may seem like random spam, but in reality, they are carefully targeted.
Instead of blasting messages blindly, scammers rely on data brokers – companies that collect, package and sell personal information. These brokers build detailed profiles, and scammers either buy or steal those lists to decide exactly who to target and when.
Below, I’ll explain how this system works and, more importantly, how you can remove yourself from the data pipeline scammers depend on.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
TAX SEASON SCAMS SURGE AS FILING CONFUSION GROWS
Scammers ramp up Super Bowl-themed fraud each February, using fake ticket, streaming and betting alerts to steal personal information from unsuspecting fans. (Elisa Schu/picture alliance via Getty Images)
Why Super Bowl season is a gold mine for scammers
Big events create urgency, emotion and distraction – perfect conditions for fraud. During Super Bowl week, scammers use the same themes real companies use:
- Ticket confirmations
- Streaming service alerts
- Betting account warnings
- Delivery delays for food or merchandise.
But here’s the key: they don’t blast these messages randomly. They target people who look like likely buyers. That targeting comes from your digital profile.
How scammers know you’re a ‘Super Bowl target’
You might never have posted about football, yet you still receive a fake ticket message. That’s because data brokers build profiles using your:
- Address history
- Household size
- Income range
- Age
- Shopping behavior
- Most-used apps
- Frequently visited websites
- Household members.
These details are stitched together from retailers, apps, public records and tracking tools – then sold to marketers and, eventually, leaked or resold to scammers. So when Super Bowl season arrives, scammers simply filter their lists: “People who look like they’d watch the game, place a bet, or order food.” And your phone number is right there.
The most common Super Bowl scam messages
During Super Bowl week, scammers flood inboxes and phones with messages that look like they came from legitimate companies. The goal is simple: create urgency, make you click and steal your information before you have time to think. Here are the scams I see spike every February:
1) Fake ticket alerts
“Your Super Bowl ticket transfer failed. Verify now.”
These messages pretend to come from Ticketmaster, StubHub or SeatGeek. They claim your ticket couldn’t be delivered, your transfer is pending or your account needs verification. The link takes you to a fake login page that looks identical to the real site. The moment you enter your email and password, scammers capture your credentials. Many victims then find their real ticket accounts emptied, their payment methods used or their email taken over.
How to spot it:
- The sender’s address is misspelled
- The link leads to a lookalike domain
- The message creates panic and urgency.
What to do: Never click. Go directly to the ticket site through your browser or app.
2) Streaming account warnings
“Your Super Bowl stream is on hold. Update billing now.”
These messages impersonate major streaming platforms like YouTube TV, Hulu, ESPN, Peacock or cable providers. They claim your payment failed or your account is suspended just before kickoff. The link sends you to a fake billing page that steals your credit card details, login credentials or both. Some versions install malware that records keystrokes and login activity.
Why this works: Millions of people stream the Super Bowl. Scammers know most recipients won’t even question it.
What to do: Open the streaming app directly and check your account there. Ignore any links in the message.
5 MYTHS ABOUT IDENTITY THEFT THAT PUT YOUR DATA AT RISK
Super Bowl scams aren’t random; criminals use detailed data broker profiles to target likely viewers, bettors and shoppers. (Kim Kulish/Corbis via Getty Images)
3) Betting account freezes
“Your wager is pending. Confirm your identity.”
These target people who have been flagged by data brokers as likely sports bettors. Messages claim your account with DraftKings, FanDuel or BetMGM is locked due to “suspicious activity.”
The fake verification page asks for:
- Your full name
- Date of birth
- Social Security number
- Bank or card details.
This gives scammers everything they need to commit identity theft.
What to do: Never respond to betting account messages outside the official app.
4) Merch and food delivery scams
“Your Super Bowl order is delayed. Track here.”
Scammers mimic popular retailers and delivery apps, like Amazon, DoorDash, Uber Eats, FedEx and USPS. They claim your food, jersey or party supplies couldn’t be delivered.
Clicking the tracking link can:
- Install malware
- Redirect you to a fake login page
- Steal your payment info.
Why it works: People are expecting packages and food orders that week, so the message feels real.
What to do: Use the retailer’s official app or website to check orders.
Why families are hit even harder
Your data isn’t isolated. Data brokers connect people living at the same address, spouses, children and roommates. So one exposed profile becomes an entire household target. During Super Bowl weekend, when everyone’s using phones, scanning QR codes and ordering food, one bad click can put the whole family at risk.
The real problem: you’re still on the lists
Most people try to protect themselves by:
- Deleting emails
- Blocking numbers
- Installing antivirus software.
Those help, but they don’t stop your data from being sold again tomorrow. As long as your information exists in data-broker databases, scammers can keep finding you. That’s why I recommend removing your data at the source.
The ‘game-day cleanup’ that stops the targeting
If you want fewer scam messages, not just better filters, you need to remove your personal data from data brokers. That’s where a data removal service comes in. While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.
Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.
Get a free scan to find out if your personal information is already out on the web: Cyberguy.com.
What to do before Super Bowl weekend
Here’s how to protect yourself right now:
- Don’t click Super Bowl messages. Even if they look real, go directly to the company’s website instead. Use strong antivirus software to help block malicious links, fake websites and malware before they can steal your information.Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android and iOS devices at Cyberguy.com.
- Avoid QR codes from emails or texts. Many link to fake login pages.
- Use credit cards, not debit cards. They offer stronger fraud protection.
- Remove your data from broker sites. This is the single most effective way to reduce scam targeting.
FBI WARNS QR CODE PHISHING USED IN NORTH KOREAN CYBER SPYING
Fake Super Bowl tickets and streaming messages often create urgency, pushing victims to click malicious links or fake login pages. (Kyle Ericksen/Penske Media via Getty Images)
Kurt’s key takeaways
Super Bowl scams are not random. Instead, they are precision-targeted using personal data sold behind the scenes. While you cannot stop scammers from trying, you can make it harder for them to find you. By removing your data now, you reduce scam messages, limit fake alerts and lower your risk, not only this Super Bowl, but throughout the entire year. That kind of protection is a win worth celebrating.
Have you received scam texts or emails tied to the Super Bowl? What did they look like, and did you almost fall for one? Let us know by writing to us at Cyberguy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
For almost two hours last week, Meta employees had unauthorized access to company and user data thanks to an AI agent that gave an employee inaccurate technical advice, as previously reported by The Information. Meta spokesperson Tracy Clayton said in a statement to The Verge that “no user data was mishandled” during the incident.
A Meta engineer was using an internal AI agent, which Clayton described as “similar in nature to OpenClaw within a secure development environment,” to analyze a technical question another employee posted on an internal company forum. But the agent also independently publicly replied to the question after analyzing it, without getting approval first. The reply was only meant to be shown to the employee who requested it, not posted publicly.
An employee then acted on the AI’s advice, which “provided inaccurate information” that led to a “SEV1” level security incident, the second-highest severity rating Meta uses. The incident temporarily allowed employees to access sensitive data they were not authorized to view, but the issue has since been resolved.
According to Clayton, the AI agent involved didn’t take any technical action itself, beyond posting inaccurate technical advice, something a human could have also done. A human, however, might have done further testing and made a more complete judgment call before sharing the information — and it’s not clear whether the employee who originally prompted the answer planned to post it publicly.
“The employee interacting with the system was fully aware that they were communicating with an automated bot. This was indicated by a disclaimer noted in the footer and by the employee’s own reply on that thread,” Clayton commented to The Verge. “The agent took no action aside from providing a response to a question. Had the engineer that acted on that known better, or did other checks, this would have been avoided.”
Last month, an AI agent from open source platform OpenClaw went more directly rogue at Meta when an employee asked it to sort through emails in her inbox, deleting emails without permission. The whole idea behind agents like OpenClaw is that they can take action on their own, but like any other AI model, they don’t always interpret prompts and instructions correctly or give accurate responses, a fact Meta employees have now discovered twice.
NEWYou can now listen to Fox News articles!
Phishing emails are getting more convincing every day. Scammers copy the look of trusted brands and rely on urgency to get you to click before you think. But sometimes the most misleading part of a scam is not the email itself. It is the signal your own email app gives you.
A CyberGuy reader recently sent us a screenshot of an email that looked suspicious but included something surprising at the top. Apple Mail displayed a banner that said, “This message was sent from a trusted sender.” At first glance, that message feels reassuring. Many people would assume the email must be legitimate. The reader sent the screenshot with the subject line “Another sneaky trick.” In the image, Apple Mail labels the message as coming from a trusted sender even though the email itself shows several signs of a phishing scam.
Here is the catch. That label comes from Apple Mail itself, not from Apple and not from a system verifying the email. In other words, a phishing email can still appear trusted. Understanding how this happens can help you avoid handing your Apple ID or other personal information to scammers.
APPLE APP PASSWORD SCAM EMAIL WARNING
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Scammers often copy Apple’s branding and use urgent warnings to push people into clicking malicious links. (Photo Illustration by Thomas Trutschel/Photothek via Getty Images)
Why Apple Mail may label a phishing email as a trusted sender
Apple Mail automatically adds the trusted sender banner in certain situations. It usually appears when the email address looks familiar to your device. For example, Apple Mail may display the banner if:
- The sender’s address is saved in your Contacts
- You have replied to that email address before
- The address appears in previous email conversations
The feature is designed to help you quickly recognize people you communicate with often. It is meant as a convenience signal, not a security verification. That distinction is important.
Warning signs of a fake Apple account email
Phishing emails often copy the look of real Apple notifications. The goal is to create urgency so the victim clicks before thinking. The email in the screenshot contains several classic warning signs.
Generic greeting
The message begins with “Dear user” instead of addressing the recipient by name. Legitimate account emails typically reference your name or Apple ID information.
Slightly incorrect branding
The email references “Cloud+ subscription.” Apple’s real service is called iCloud+. Small branding mistakes often appear in phishing campaigns.
Urgent scare tactics
The message warns that personal data could be permanently removed from cloud storage. Fear and urgency are common tools in phishing scams.
Payment problems tied to account threats
Scammers often claim a subscription payment failed and your account is at risk. The goal is to push victims to click a link and enter login details. Apple does not send emails threatening immediate deletion of iCloud data because of a billing issue.
Why the Apple Mail trusted sender banner can be misleading
Because the banner relies on familiarity, scammers can sometimes exploit it. Cybercriminals often spoof real email addresses so their messages appear to come from someone you know. If that address matches a contact or previous message history, Apple Mail may still mark it as trusted.
REAL APPLE SUPPORT EMAILS USED IN NEW PHISHING SCAM
That can create a false sense of safety. The banner simply reflects your email history. It does not confirm the sender’s identity or verify that the message actually came from Apple or any legitimate company. In some cases, that visual signal can make a phishing email look more believable than it really is.
The “trusted sender” banner in Apple Mail reflects your contact history. It does not verify that the email actually came from Apple or another legitimate company. (Sean Gallup/Getty Images)
Ways to stay safe from Apple phishing emails
Phishing emails continue to evolve, but a few simple habits can greatly reduce your risk.
1) Avoid clicking links in account warning emails
If you receive a notice about your Apple account, open your browser and go directly to Apple’s official website instead of using the email link.
2) Use strong antivirus software
Strong antivirus software can help detect malicious links, suspicious downloads, and phishing pages before they reach your device. Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android & iOS devices at Cyberguy.com
3) Use a data removal service
Scammers often gather personal information from data broker websites to make phishing emails look more convincing. Removing your data from these sites reduces the information criminals can use to target you. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.
4) Check your Apple account settings directly
You can verify subscriptions by opening Settings on your device, tapping your Apple ID and selecting Subscriptions.
5) Look closely at branding and wording
Misspelled product names, unusual formatting, and generic greetings often reveal a phishing email.
6) Enable two-factor authentication
Two-factor authentication (2FA) adds another layer of protection, even if someone manages to steal your password.
Cybercriminals frequently disguise their emails by mimicking legitimate addresses, making it look like the message was sent by someone you trust. (Wei Leng Tay/Bloomberg via Getty Images)
Kurt’s key takeaways
Email apps often try to help by identifying messages that appear familiar. Unfortunately, scammers understand how those systems work. The trusted sender banner in Apple Mail reflects your contact history. It does not confirm that the message came from Apple or any legitimate company. That means one simple habit still offers the best protection. Pause before clicking any urgent account warning. Because in the world of phishing scams, the messages that look the most convincing are often the most dangerous.
If your email app told you a message was trusted, would you still double-check before clicking? Let us know by writing to us at Cyberguy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
Road closures, parking restrictions for DC’s Rock ‘n’ Roll Half Marathon – WTOP News
Long-time Cleveland community activist Khalid Samad dies
City of Austin Launched New Website This Week
Man convicted of murder for 2019 death of Alabama college student Aniah Blanchard
Alaska Airlines, FedEx cargo planes narrowly avoid catastrophic crash while landing at Newark airport
Florida High School Football Rankings: Top 25 teams – Oct. 21
How old is Bo Nix? What to know about Oregon quarterback ahead of 2024 NFL Draft
Cleary's 21 help Le Moyne down Central Connecticut State 69-64 in OT
99th annual Pony Swim held in Virginia
Indiana Members Credit Union announced as new anchor tenant at Bottleworks District
4 House Dems vote against Women’s History Museum bill over biological women-only amendment, Republican claims
Iran attacks cut 17% of Qatar’s LNG capacity for up to 5 years: QatarEnergy
Cursive is back. But should students be learning the skill?
State Department to ask for bonds of up to $15,000 for visa applications from a dozen more countries
Russian tanker drifting in the Mediterranean Sea may explode
-
Oklahoma5 days agoFamily rallies around Oklahoma father after head-on crash
-
Nebraska7 days agoWildfire forces immediate evacuation order for Farnam residents
-
Southeast1 week ago‘90 Day Fiancé’ alum’s boyfriend on trial for attempted murder over wild ‘Boca Bash’ accusations
-
Detroit, MI23 hours agoDrummer Brian Pastoria, longtime Detroit music advocate, dies at 68
-
Georgia4 days agoHow ICE plans for a detention warehouse pushed a Georgia town to fight back | CNN Politics
-
Massachusetts1 week agoMassachusetts community colleges to launch apprenticeship degree programs – The Boston Globe
-
Alaska5 days agoPolice looking for man considered ‘armed and dangerous’
-
Colorado1 week ago‘It’s Not a Penalty’: Bednar Rips Officials For MacKinnon Ejection | Colorado Hockey Now