album-art
00:00

 

The LA fire has devastated the lives of 92,000 people. Around 12,000 homes, educational institutes, and businesses have burnt down to ashes. 24 unfortunates have lost their lives.

While the entire world is praying for the Santa Ana winds to slow down, cybercriminals have a completely different agenda at this point. Those Americans who are trying to lend a helping hand to the LA fire victims may get duped by threat actors amidst complete chaos.

 

How do threat actors leverage natural disasters to their benefit?

 

cyber crime

 

Threat actors and scammers are best at one thing- making the most out of people’s emotions. Be it during the holiday season or any kind of natural or man-made disaster, cybercriminals look forward to feathering their own nests. 

Cliff Steinhauer, the information security and engagement director at the National Cyber Security Alliance, believes that cyber scams spike all of a sudden around natural disasters or major events. 

People are willing to help the victims with monetary aid, and there is a lot of emotional investment involved in such situations. That’s what the scammers make come into the scene. You often tend to go out of your way to help people without considering whether or not the particular crowdfunding link or donation website is actually legitimate.

Threat actors pay extra attention to how a particular disaster unfolds. They do so to make their social engineering tactics more credible and realistic.

 

data theft

 

Types of cybersecurity scams you should be mindful of during the ongoing LA fire disaster!

Social engineering attacks spike up like crazy during natural disasters. This scamming technique involves using deception or manipulation in order to gain illegitimate access to the sensitive data of an individual or an organization. The data may include DOBs, passwords, user IDs, social security numbers, bank account details, and other personal information

Threat actors wait for the right opportunity and then come up with messages, emails, and even calls to catch you unguarded. These messages and emails may include fake donation pages and malicious links. There will always be a sense of urgency so that the receiver gets less time to think and respond rationally.

Threat actors not only try to target those who are trying to help but also those victims who are actively seeking help in these dire circumstances. Cybersecurity experts have warned LA wildfire victims to be wary of any person or organization who approaches them on the pretext of offering help and relief. Fire victims have been urged not to share personal data like bank account details and other sensitive information with random strangers.

 

phishing

 

The threat actors may pose as charitable organizations or government agencies to earn your trust and harvest personal data from you. Before seeking help, one must ensure that they have approached the right organizations and relevant authorities.

To make things worse, cybercriminals have easy access to artificial intelligence, which they use to refine their scam messages and go scot-free without raising any suspicion. Generative AI enables them to tune their phishing messages. There are rarely any spelling mistakes or bad grammar in such messages nowadays.

As per OpenAI, threat actors use ChatGPT’s Natural Langauge Processing (NLP) as well as its code-generating abilities in order to carry out complicated tasks that otherwise would have required a higher degree of technical expertise.  

 

cyber attack

 

Experts warn that the LA fire presents yet another “opportunity” for threat actors to exploit victims and potential helpers for quick financial gain. By leveraging AI, scammers can craft highly convincing messages and emails, making it easier to deceive individuals and gain unauthorized access to personal information. Strengthening Phishing Protection is crucial in such scenarios to safeguard sensitive data and prevent these malicious activities

 

How can you safeguard yourself from threat actors amidst LA fire chaos?

Whether you have been an unfortunate victim of the LA wildfire or a good samaritan who wishes to help people in this time of distress, make sure you are cautious of the malicious advances of cybercriminals.

Here are some red flags that you must keep an eye on to avoid any kind of cyber fraud:

 

phish protection

 

  • Security warning: If you come across a security warning while getting directed to a particular website, quit then and there. It can be a fake donation or a charity website trying to harvest your data on the pretext of helping victims.
  • Odd domain names: If the domain name sounds phishy, trust your instinct and stop then and there.
  • Misspelled URLs: Misspelled URLs often go ignored. Pay close attention to URLs before clicking on them, as the misspelled ones can be malicious.
  • Cross-check details: Visit give.org and GoFundMe to check if the fundraisers you’re planning to donate to are even verified or not. Also, USA Today will provide with you detailed lists of trustworthy organizations, charities, and services that you can avail of in this difficult time.