War in Ukraine Brings Out Scammers Trying to Exploit Donations

Bree Fowler Senior Writer
Bree Fowler writes about cybersecurity and digital privacy. Before joining CNET she reported for The Associated Press and Consumer Reports. A Michigan native, she's a long-suffering Detroit sports fan, world traveler, wannabe runner and champion baker of over-the-top birthday cakes and all-things sourdough.
Expertise cybersecurity, digital privacy, IoT, consumer tech, smartphones, wearables
Bree Fowler
3 min read
A picture of a woman sorting through clothing for Ukrainian refugees.

The donations for Ukrainian refugees keep coming, but those collecting funds aren't always legitimate. 

Getty

What's happening

The FBI is warning that online scammers are trying to take advantage of the war in Ukraine by impersonating legitimate charities.

Why it matters

Clicking on the wrong link or responding to a phishing email could send your money or cryptocurrency to cybercriminals instead of those in need. It also could put your financial or personal information at risk of being compromised.

The world has responded to Russia's invasion of Ukraine with an outpouring of support for the Ukrainian people. That hasn't escaped the notice of scammers, who are all too willing to take advantage of people's desire to help.

One scam email sports a logo in the blue and yellow colors of the Ukrainian flag. It asks for donations to a humanitarian organization in the form of US dollars and a handful of cryptocurrencies. Other bogus emails ask recipients to send money to help children or to buy weapons for the Ukrainian military.

Fake charity websites are popping up, too. Researchers at ESET, a Slovakia-based antivirus company, said they'd discovered a handful of sites using the colors of Ukraine's flag and dramatic images of soldiers and explosions. The websites solicit "aid," ESET said, but they don't provide specifics as to how the money will be used.

In a sad commentary on humanity, the Ukraine-themed phishing emails and websites started showing up shortly after the Feb. 24 invasion that triggered one of Europe's biggest humanitarian crises in years. In addition to the pleas for help, scammers also pretended to be rich Ukrainian businessmen looking to move money out of the country, a twist on the infamous Nigerian prince scam.

Months later, the FBI is now warning Americans to be careful where they send their money and cryptocurrency, saying that it's also spotted these kinds of phishing emails and lookalike websites.  

Security researchers say the scam activity is to be expected. Wars create all the emotional triggers, such as a sense of urgency, that scammers exploit as they try to separate people from their money.

A  phishing email attempting to exploit the war in Ukraine to steal money and cryptocurrency.

An example of a phishing email attempting to exploit the war in Ukraine to steal money and cryptocurrency. 

Bitdefender

"Wherever there is war," said Bogdan Botezatu, who runs threat research at Bitdefender, "there will be jackals trying to piggyback on people's pain."

Bitdefender, a Romania-based cybersecurity company, began spotting phishing campaigns a day after the invasion started, Botezatu said. The plight of Ukrainian refugees has become very real to him because refugees from the country have already arrived in Romania's capital, Bucharest, which sits about 300 miles from the border with Ukraine.

There's no shortage of legitimate charities raising money online to help refugees. The best way to reach them is to type their URL directly into your browser or get a link from a trusted source. CNET maintains a list of credible charities helping Ukrainians.

It's worth noting that some real charities accept donations in the form of cryptocurrency. But consumers should be especially careful when their crypto is involved, said Tony Anscombe, chief security evangelist at ESET.

"Unless it's a valid crypto wallet from a very official organization, I would avoid it," Anscombe said. "There's no way of knowing who's really behind a crypto wallet."

A scam website with the wording "Stop War in Ukraine"

An example of one of the scam websites spotted by ESET researchers.

ESET

While the flood of scams can make it tough for well-meaning people, researchers and the FBI urge the charitably minded to take the same precautions they'd take before contributing to any organization.

Vet any group before you make a contribution, to ensure that it's reputable. A quick Google search as well as looking up the name in GuideStar or Charity Navigator are good places to start. 

Ignore a plea for money if it comes from a stranger. Researchers expect an uptick in romance-themed scams, with scammers pretending to be Ukrainian women who are refugees or seeking help in leaving the country.

Consumers should also delete unsolicited requests for money and steer clear of solicitations that pop up on social media, a popular platform for scammers to exploit. And if you think that you've been scammed, report the crime to the FBI's Internet Crime Complaint Center.

Most importantly: Resist appeals that play on urgency. Be wary of any charity that says it needs to send money right away.

"The need isn't going away anytime soon," Anscombe said. "While there is a time sensitivity, a real charity will take your money whether you donate today or tomorrow."