Following BTS's comeback and announcement of their ARIRANG world tour, scammers launched phishing campaigns using fake websites that closely replicate official ticket pre-sale pages across several countries. These sites simulate legitimate purchasing workflows, including payment options, but direct payments to fraudulent accounts, especially exploiting Brazil's PIX instant payment system. The scam capitalizes on fans' eagerness and confusion about new ticketing procedures, employing fake error messages to pressure victims into using scam-preferred payment methods. Kaspersky identified at least 10 such fraudulent domains and provides detailed advice on avoiding these scams.

Fans attempting to purchase BTS ARIRANG tour tickets from these fake websites risk financial loss as payments are directed to scam-controlled accounts, often via instant payment systems like PIX. The scam's design makes it difficult to recover funds. Additionally, victims who provide card information may face unauthorized transactions. The fraudulent sites undermine trust in official ticketing processes and exploit social engineering to induce panic and impulsive payments.

No official patch applies as this is a phishing scam. Users should only purchase tickets through official BTS or event organizer websites, accessed by typing URLs directly rather than following links from social media or messages. Carefully verify website domains for subtle alterations and check for the presence of Privacy Policy and Terms of Use pages, though their presence alone does not guarantee legitimacy. In Brazil, avoid making online payments during pre-sale, as payments should be made in person. If scammed, immediately contact your bank to block or reissue cards and enable real-time banking alerts. Employ cybersecurity solutions capable of detecting and blocking fraudulent websites. Follow vendor guidance from official BTS and ticketing sources.