In the wake of the devastating Los Angeles wildfires, cybercriminals are exploiting the crisis to scam unsuspecting victims and good Samaritans. As individuals and organizations rally to provide relief and support, scammers are leveraging the panic and goodwill to steal money and sensitive information. A recent investigation by the cybersecurity company Before AI sheds light on these fraudulent tactics and provides valuable insights into how to stay safe.
Fraudulent Domains Targeting Victims
Between January 8th and January 13th, 2025, BforeAI identified 119 suspicious domains registered at the height of the wildfire crisis. These domains were strategically designed with keywords such as “LA fire,” “wildfire,” “relief,” “fund,” and “rebuild,” aiming to capitalize on trending topics in the media. Half of these domains were registered through GoDaddy, a web hosting service recently criticized by the Federal Trade Commission for inadequate cybersecurity measures. Other platforms involved include Namecheap, Register, Ionos, Hostinger, Squarespace, and Tucows.
Scammers have also taken advantage of top-level domains (TLDs) to build credibility. Seventy percent of the fraudulent sites used the “.com” TLD, while others opted for “.fund,” subtly hinting at their malicious intent to steal donations from unsuspecting victims.
Fake GoFundMe Campaigns
A significant number of fake GoFundMe campaigns emerged during the wildfires. These campaigns often tugged at heartstrings by showcasing injured or lost pets purportedly affected by the fires. However, many of these images were stolen from other sources, including previous scam campaigns or unrelated legitimate fundraisers.
One fake campaign, titled “Aid Our Recovery from LA Fire Tragedy,” claimed to support a dog injured by the wildfires. However, the photo used was traced to an unrelated fundraiser for a dog battling cancer.
Scammers also posed as individuals and organizations offering shelter and care for displaced animals. Their fraudulent activities not only misdirected funds away from legitimate causes but also exploited the trust of well-meaning donors.
Merchandise and Cryptocurrency Scams
Beyond fake fundraisers, scammers launched merchandise stores falsely claiming to support wildfire victims. Some even impersonated the Los Angeles Fire Department, selling items supposedly tied to relief efforts.
Additionally, new cryptocurrency schemes surfaced, promising quick financial gains while capitalizing on the wildfire’s media attention. These “pump and dump” schemes targeted victims who had already suffered financial losses, luring them with the promise of rapid returns. Social media platforms amplified these schemes, helping scammers reach broader audiences.
How to Stay Protected
To safeguard yourself and your donations during times of crisis, follow these guidelines:
Verify Domains: Be cautious when visiting websites related to disaster relief. Look for official sites and verify their legitimacy before making any donations.
Research Fundraisers: Always verify GoFundMe campaigns and other fundraisers. Look for credible information about the organizer and cross-check photos and stories.
Avoid Impulse Donations: Take time to research organizations and campaigns. Donate directly to reputable and established charities.
Be Skeptical of Merchandise Claims: Avoid buying merchandise claiming to support relief efforts unless you can verify the seller’s authenticity.
Beware of Cryptocurrency Schemes: Avoid investing in new or unverified cryptocurrency projects, especially those tied to trending disasters.
Report Suspicious Activity: If you come across a suspicious campaign or domain, report it to the appropriate authorities or cybersecurity organizations.
Final Thoughts
The Los Angeles wildfires have left countless individuals and families in need of support. While many are stepping up to help, cybercriminals are exploiting the situation for personal gain. By staying vigilant and informed, you can ensure your contributions make a genuine difference and protect yourself from falling victim to these malicious schemes.
Summit Systems remains committed to raising awareness about cybersecurity threats and empowering individuals and organizations to navigate the digital landscape safely.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. Summitsystemsissp assumes no liability for the accuracy or consequences of using this information