Fake Disaster Appeal Scams via Email
How fraudulent disaster relief emails impersonate major aid organisations to collect donations in the days following a major emergency, before donors have identified verified giving channels.
Part of: Fake Disaster Text and Message Appeal Scams
Last reviewed: 9 June 2026
Email-based disaster appeal fraud operates differently from text-message variants: while a fraudulent text is brief and depends on urgency, a fraudulent email can construct a more elaborate, authoritative-looking appeal that mimics the detailed communications of major relief organisations. Donors who receive what appears to be an official email from a recognised international aid body, complete with branded formatting and a donate link, may give without checking whether the email came from the genuine organisation.
The email format allows fraudsters to include more detail — specific dollar or pound amounts raised so far, names of affected regions, descriptions of specific relief activities — all of which create an impression of an active, credible operation. This additional detail makes email disaster fraud harder to identify at a glance than a generic SMS.
How this scam works on email
Within days of a major disaster — earthquake, flood, cyclone, conflict displacement — a mass email is sent using the name and visual branding of a major relief organisation. The sender domain is a look-alike address — perhaps with a letter transposed or a country-code domain appended — that passes casual inspection. The email describes the scale of the disaster, outlines the relief organisation's response, and includes a prominent donate button.
Clicking the donate button leads to a payment page designed to mimic the genuine organisation's giving portal. Donors who pay receive an automated email receipt. Some fraudulent email campaigns include sophisticated features: real-time donation counters, social sharing buttons, and personalised matching gift offers. The funds collected go entirely to the scam operator.
In targeted variants, donors who have previously given to the genuine organisation — and whose email addresses have been leaked in data breaches — receive emails that reference their past giving, creating a stronger impression of a continuing relationship with a legitimate organisation.
Common red flags
- Email sender address is similar but not identical to the official domain of the named relief organisation
- Donate button leads to a URL that is not the official website of the named charity
- Email references your past donations to an organisation but arrives from an unfamiliar domain
- Appeal arrives within hours of a disaster before official relief communications would normally be sent
- Email requests payment via a method not used by the legitimate organisation — such as wire transfer or cryptocurrency
- No unsubscribe link or privacy policy is present, which is required for legitimate commercial email
How to protect yourself
- Navigate directly to the relief organisation's official website rather than clicking any email link to make disaster donations
- Verify the sender's domain exactly against the official organisation's web address before clicking any link
- Use established disaster giving portals, which are typically maintained by national charity watchdog bodies in the aftermath of major events
- Do not donate in the first 24 to 48 hours via email links — take time to identify genuine channels
- Report suspicious emails to your provider and delete without providing payment details
How to report it
- Report the email to the FTC at reportfraud.ftc.gov and forward to [email protected]
- Report to Action Fraud (UK) at actionfraud.police.uk
- Notify the legitimate organisation being impersonated so they can issue a public warning
- Report to IC3 at ic3.gov if significant funds were transferred
Frequently asked questions
How quickly do real relief organisations send donation emails after a disaster?
Major organisations typically send communications within 24 to 48 hours of a major disaster becoming widely reported, but they send from verified official domains with unsubscribe mechanisms and link to their established giving portals. Fraudulent emails often arrive faster and link to newly created payment pages.
Can look-alike email domains be blocked?
Email security tools can flag look-alike domains and many email clients highlight when a sender domain does not match the organisation's official address. However, these safeguards are not universal. Always check the sender domain yourself on any disaster-related donation email.