Ticket Transfer Link Scam
A phishing link disguised as an official ticket-transfer notification, designed to steal marketplace account credentials.
Also known as: ticket transfer phishing
Last reviewed: 5 July 2026
Ticket transfer link scams send an email or text that looks like an official notification from a ticketing platform saying a ticket has been transferred to the recipient and needs to be "accepted" or "claimed" by clicking a link. The link leads to a convincing fake login page that harvests the victim's ticketing account username and password, which the attacker then uses to access the real account, transfer out any legitimate tickets stored there, and resell them before the victim notices.
This attack is effective around major on-sales and popular events, when consumers legitimately expect transfer notifications from friends or resellers and are less likely to scrutinize an unexpected message. Because ticketing accounts are often linked to saved payment methods, a compromised account can also be used to make unauthorized purchases.
Users should navigate to ticketing platforms directly by typing the address rather than clicking email or text links, enable two-factor authentication on ticketing accounts where available, and verify unexpected transfer notifications with the person who supposedly sent them before clicking anything.
Examples
- A text message claims a friend transferred concert tickets and asks the recipient to click a link to "accept" them, leading to a fake login page.
- A victim's ticketing account is accessed after they enter credentials on a fake transfer page, and their own tickets are resold within hours.