20 March 2020

Scammers are trying to steal BTC COVID-19 donations under the guise of World Health Organization


Scammers are trying to steal BTC COVID-19 donations under the guise of World Health Organization

Emergencies, such as the current COVID-19 pandemic, offer golden opportunities for hackers and con artists to launch fraudulent campaigns to make a profit from playing on people’s fears or evoking feelings of compassion. They are setting up fraudulent web sites offering “cures”, or creating sites pointing people to an online map that purports to track COVID-19 cases, but actually pilfers usernames, passwords and credit card numbers stored in a user's browser, and even impersonating the World Health Organization (WHO) to steal money.

According to cybersecurity firm Sophos, some online-perpetrators are now masquerading as the WHO in an attempt to steal cryptocurrency donations to fight the COVID-19 pandemic.

The WHO impersonations were reported by Sophos’ security expert Chester Wisniewski on March 19. According to the researcher, scammers are trying to trick people into sending them Bitcoin as a donation to WHO’s COVID-19 Solidarity Response Fund, established in partnership with the United Nations Foundation.

According to the email screenshots posted by Wisniewski, the scammers ask potential donors to send donations in Bitcoin directly on a Bitcoin address provided in email. As of the time of writing this news article both Bitcoin addresses listed in email were empty.

Back to the list

Latest Posts

NSA publishes guidance on how to secure wireless devices in public settings

NSA publishes guidance on how to secure wireless devices in public settings

The agency advises to avoid connecting to public Wi-Fi, and use a corporate or personal Wi-Fi hotspot with strong authentication and encryption whenever possible.
30 July 2021
Death Kitty ransomware reportedly behind the attack on South African ports

Death Kitty ransomware reportedly behind the attack on South African ports

The attackers claim they encrypted the company’s files, including 1TB of personal data, financial reports and other documents.
30 July 2021
New destructive wiper malware linked to recent Iranian railway attack

New destructive wiper malware linked to recent Iranian railway attack

The Meteor wiper was developed in the past three years and seems to be designed for reuse in multiple campaigns.
30 July 2021