Cybercriminals are exploiting the ongoing California wildfires to launch phishing scams, taking advantage of the chaos and urgency caused by the disaster. According to research from Veriti, several fraudulent domains have been identified, such as “malibu-firecom” and “fire-reliefcom,” which closely mimic legitimate services associated with fire evacuation, recovery, and assistance. These phishing sites aim to trick victims into providing sensitive personal information, such as login credentials and financial details, by pretending to offer vital aid during the wildfires.
The fake domains and websites created by the attackers are designed to prey on victims’ fears and emotional responses to the disaster. These sites often mimic official services like fire evacuation assistance or fire coverage, creating a sense of urgency to prompt users into clicking links or downloading malicious content. In some cases, attackers could use subdomains to advertise “fire-related assistance,” while secretly attempting to install malware on victims’ devices, further exploiting the situation.
Researchers from Veriti have discovered that these newly registered domains exhibit patterns common to phishing campaigns, with some sites targeting specific locations like Malibu and Pacific Palisades. Although no active email campaigns related to these phishing domains have been identified yet, Veriti continues to monitor these sites for any emerging threats. The cybercriminals behind these attacks are using social engineering techniques to manipulate victims, emphasizing the importance of vigilance during times of crisis.
Veriti has urged the public to remain cautious and informed about the growing threat of phishing scams related to the California wildfires. By staying aware of how cybercriminals exploit these situations, individuals and organizations can better protect themselves from falling victim to these scams. The research team has compiled a list of domains that they believe are tied to this malicious activity, advising users to avoid interacting with them to safeguard their personal and financial information.
