WARNING: One Direction, Belgium’s Tomorrowland Festival Join The Rolling Stones In Scam Land

By David Cohen 

OneDirectionScam650It’s good to see that scammers on Facebook have diverse musical tastes: Following the report of a scam promising free Rolling Stones tickets earlier this week, Sophos’ Naked Security blog also shared similar hoaxes involving One Direction and the Tomorrowland electronic music festival in Belgium.

Much like the Rolling Stones scam, the chance for free concert tickets is offered in exchange for sharing what turns out to be a spammy website, and there are obvious red flags. Naked Security wrote:

There’s a matching scam, dished out from exactly the same server, offering free tickets to see teenage heart-throbs One Direction.

No disrespect to Mick, Keef, Charlie, and Ronnie, but to get into line for 1D tickets, Directioners need to get 15 clicks via their personalized Web links, not just 10.

There’s yet another structurally identical scam trying to suck in dance music fans by offering tickets to this year’s Tomorrowland event in Belgium.

In all three scams, the Websites state that your free tickets, should they actually exist, will take three to five business days to arrive.

The Stones and One Direction sites claim: “Since we are from the U.K., the shipping time is different from country to country.”

The Tomorrowland scam instead gives a nod to the event’s host country, claiming that: “Since we are from Belgium, the shipping time is different from country to country.”

But in a reminder of just how multijurisdictional cybercrime can be, the scams claiming a U.K. provenance have .com Web addresses that resolve to a server in Switzerland, while the scam supposedly from Belgium has an .eu web address that is hosted on a server in the U.S.

The registration details for the three domain names are all different: One lists an individual claiming to be in Germany; the other two shield the real registrants behind registration proxies in Panama and the Bahamas.

Nevertheless, the relationship between the scams is obvious, because they all seem to be driven by the same templating system; they all work in the same way; and two of them are hosted on the same server.

Fortunately, there’s a simply way to beat them all: Don’t try, don’t buy, don’t reply.

Readers: Have you seen any Facebook posts offering tickets to The Rolling Stones, One Direction, Tomorrowland, or any other concerts or events?


Screenshots courtesy of Naked Security.