Watch out for Typhoon Yolanda online scams
MANILA, Philippines - Two weeks have passed since Typhoon Yolanda (international name Haiyan) made landfall over central Philippines, leaving thousands dead or injured, with millions more in need of humanitarian assistance.
Unfortunately, many scams have already taken advantage of this disaster. For example, fake Facebook pages ask for donations via PayPal, which end up in the hands of would-be scammers rather than in the hands of legitimate charities.
A particular Facebook page actually asks users to visit the scammer’s own blog, which asks users to make a “donation†via PayPal. They go so far as to take them to the PayPal payment page — where it becomes clear that the user is sending money to somebody’s personal account and not a legitimate charity.
Fake Facebook pages are not the only type of scam that took advantage of the calamity. Trend Micro spotted several spammed messages with Typhoon Haiyan as the subject. These messages often required the recipients to give their personal information or send money via wire or bank transfers.
While it might seem deplorable to take advantage of natural disasters, it’s simply business for cybercriminals. In previous disasters — like the 2011 tsunami/earthquake in Japan — attackers took advantage of the tragedy to create phishing pages, spam attacks, and blackhat SEO attacks.
How can users protect themselves from these scams and make sure that their donations end up in the right hands? Here are some useful tips:
• Give to organizations you know and trust. Some scammers will try to pass themselves off as new charities established expressly for this disaster. Instead, donate to well-known charities that have been around for years. Alternately, smaller organizations that you personally know and trust to be reliable can also be a safe choice.
• Be careful about appeals from social media and e-mail. Appeals to donate to various charities are spreading both via social media and e-mail messages. While many, if not most, of these are not scams, some will be.
Some may be appeals from fake charities; others may just be lures to direct users to malicious websites. In either case, be careful about listening to these appeals. If you do decide to give to an organization whose appeal you saw here, go directly to their site by typing their URL into the address bar or using a search engine. This will help minimize the risks from potentially malicious links.
• Check the payment site carefully. If you are making a donation online, check the payment site as carefully as you would any other online payment. Whether it’s entering your credit card information directly or using some other online payment site (like Amazon, Google or PayPal), be aware that these can be phished as well.
There are many charities that could use your donations, but this is not the time to let your guard down. These tips can help ensure that your donation gets to where it is needed the most. Trend Micro also notes that you can make donations to the American Red Cross from inside Facebook itself; details can be found in their official blog.
Trend Micro Inc. is a global leader in security software, is rated number one in server security (IDC, 2013), and strives to make the world safe for exchanging digital information.
Built on 25 years of experience, its solutions for consumers, businesses and governments provide layered data security to protect information on mobile devices, endpoints, gateways, servers and the cloud.
Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem.
All of its solutions are powered by cloud-based global threat intelligence, the Trend Micro Smart Protection Network infrastructure, and are supported by over 1,200 threat experts around the globe.
For more information, visit TrendMicro.com.
- Latest