Cybersecurity specialists have warned music fans about an organised online fraud campaign allegedly exploiting public interest in Celine Dion’s anticipated return to live performances.
According to researchers at Group-IB, scammers are using fake ticketing websites, impersonated seller accounts, voice messages and fraudulent payment requests to target people searching for passes to upcoming concerts in France.
The operation reportedly combines social engineering with website spoofing, payment fraud and identity theft.
Scammers Infiltrate Online Fan Communities
According to the report, fraudsters are entering:
- Facebook groups
- Online marketplaces
- Music fan communities
- Concert ticket discussion forums
They allegedly pose as genuine ticket holders who can no longer attend the event and therefore need to sell their passes quickly.
Instead of relying only on written messages, some scammers reportedly send personalised voice notes to appear more credible and establish trust with potential buyers.
Victims Pressured to Pay Immediately
Once contact is established, the alleged sellers reportedly create urgency by claiming that other buyers are waiting or that immediate payment is required to reserve the ticket.
Victims may then be asked to send money through:
- Direct bank transfers
- Peer-to-peer payments
- Unofficial payment links
- Transfers outside authorised resale platforms
This payment method removes many of the consumer safeguards provided by legitimate ticketing services.
Same Digital Ticket Allegedly Sold Repeatedly
In some cases, victims reportedly receive a genuine-looking ticket link containing a functional digital entry code.
However, researchers warn that the same ticket may be sold to several different buyers.
Under this duplication model:
- Multiple people receive the same digital pass.
- The ticket may initially appear authentic.
- Only the first person whose code is scanned at the venue may gain entry.
- Other buyers discover the fraud only when they reach the concert.
This makes duplicated-ticket fraud particularly difficult to detect before the event.
Fake Ticketing Websites Copy Official Platforms
The campaign reportedly extends beyond individual sellers.
Researchers identified counterfeit websites designed to resemble major ticketing platforms and official concert pages.
These fake websites may copy:
- Ticket booking layouts
- Artist branding
- Venue seating maps
- Account login pages
- Checkout interfaces
- Payment confirmation screens
The professional appearance of these websites may create the impression that users are dealing with an authorised ticket seller.
Legitimate Payment Technology Creates False Trust
Some fraudulent sites reportedly use recognised third-party e-commerce or payment infrastructure.
While the payment interface itself may function normally, the merchant operating the website may still be fraudulent.
This allows scammers to create an appearance of legitimacy while collecting:
- Ticket payments
- Personal information
- Email addresses
- Account credentials
- Banking details
After receiving payment, the operators may deactivate the website or block communication with the victim.
Login Pages May Harvest Credentials
Researchers also warned that some counterfeit ticketing portals include account login interfaces that resemble those of recognised booking platforms.
These pages may be designed to capture:
- Usernames
- Passwords
- Email credentials
- Ticketing account details
The stolen information could later be used for account takeover, identity fraud or additional phishing campaigns.
Mule Accounts Allegedly Used to Receive Payments
The names attached to receiving bank accounts reportedly do not always match the identities presented by online sellers.
This may indicate the use of:
- Mule bank accounts
- Stolen identities
- Third-party payment accounts
- Fraudulently obtained banking credentials
Such accounts are commonly used to move illicit proceeds and make it more difficult to trace the individuals controlling the fraud operation.
Similar Ticket Fraud Has Affected Indian Events
The warning is also relevant to Indian concertgoers, where high-demand entertainment events have previously generated complaints involving:
- Counterfeit tickets
- Unauthorised resale platforms
- Excessive markups
- Duplicate QR codes
- Social media sellers
- Advance-payment fraud
High-profile events featuring international and domestic performers have demonstrated how rapidly fake ticket listings can spread when demand exceeds official availability.
Informal Platforms Increase Risk
Indian consumers frequently conduct ticket transactions through:
- Telegram
- Informal reseller groups
These platforms may help buyers locate tickets quickly, but they generally do not provide the same verification, refund and dispute-resolution protections offered by authorised ticketing systems.
How Concertgoers Can Reduce Fraud Risk
Buyers should consider the following precautions:
- Purchase only from official ticketing partners.
- Use authorised resale facilities wherever available.
- Avoid direct transfers to unknown individuals.
- Verify the website domain carefully.
- Do not rely solely on screenshots or QR codes as proof.
- Avoid sharing ticketing account passwords or OTPs.
- Confirm the seller’s identity before payment.
- Treat urgent payment demands as a warning sign.
A polished website, voice message or valid-looking ticket link should not be treated as conclusive proof of authenticity.
Investigation Highlights Growing Digital Fraud Model
The reported campaign demonstrates how cybercriminals combine technical impersonation with psychological manipulation.
Instead of merely creating obviously fake ticket listings, modern fraud networks may use:
- Professional websites
- Realistic voice communication
- Genuine-looking payment systems
- Duplicated valid tickets
- Stolen bank accounts
- Short-lived online domains
This multi-layered approach makes the fraud appear credible at every stage of the transaction.
Shunyatax Global Insight
Shunyatax Global says that a functional payment gateway, realistic website or valid-looking QR code does not establish that a concert ticket seller is genuine. Buyers should independently confirm the authorised ticketing partner, avoid peer-to-peer transfers and use platforms offering verified resale and dispute protection. Event organisers should also monitor lookalike domains and fake social media profiles before major ticket launches.