Skip to main content

Once you cover your bills at the end of the month, you might decide to give some money to charity. There are a lot of worthy causes you can donate to and you'll usually receive a confirmation email once your payment has been successful.

Fraudsters are now targeting customers with fake confirmation emails supposedly from the charity 'Migrant Helpline'. The aim of the email is to trick people into downloading a type of banking malware called Ramnit. We take you through how to avoid this scam.

The scam

ActionFraud is warning of a new phishing email supposedly from Migrant Helpline – a genuine charity not involved in this scam.

A lot of the emails are coming from the address [email protected] but fraudsters are using other addresses too. The email might feature genuine details about you such as your full name and telephone number and usually has the subject line of 'Thank you for choosing to donate to Migrant helpline'.

You can see the main body of the email below:

Thanks again for donating

We're sending it straight to Migrant Helpline so you'll be making a difference very soon. 
Your donation details: 
First name: ****
Last name: **** 
Tel. *********
Amount: £196 
Donation Reference: 09493495

If you have any questions about your donation, please follow this link and download Your (Donation Reference 09493495), with the transaction details listed above. With your help, YeshivaDonations can continue to work in Syria and neighbouring countries to deliver clean water and life-saving supplies to millions of people.

Anyone that clicks on the link in the email will download a type of banking malware called Ramnit onto the victim's device. This malware targets and steals the banking details of the person who has downloaded it, meaning that fraudsters could gain access to your account and steal your money.

How to protect yourself  

You’re likely to get a number of different emails each day, so it's no wonder you get confused by a phishing email like this one – and that's exactly what fraudsters hope for.

To help you spot a phishing email, take note of the following tips.

•  Look closely at the information in front of you – does it look genuine? You should be suspicious if you spot any spelling mistakes, grammatical errors or incorrect information.

•  Never click on any links or attachments in an email you receive out of the blue. You can move your mouse over the URL to find out its true destination and the genuine address will show up in the bottom left-hand corner of your screen.

•  You should always install software updates as soon as they become available. The upgrade often comes with certain security fixes to help protect you against malware and security exploits.

•  Make sure you have an up-to-date antivirus software installed on your computer. You can get programmes such as Avira, Avast and Panda Security for free.

•  Back up important files on an external hard drive and update this regularly. Remember not to leave the device you back up connected to your computer as any malware could infect it as well.

Remember, if you think your bank details are compromised, contact your bank immediately. thinkmoney customers can call a Money Manager on 0161 779 5000.

Want to know more about malicious software? Find out how to protect yourself against ransomware.

Legal Information