What is phishing?
Phishing is an attempt to get personal information (such as a username, password or financial details) by pretending to be a website or an individual. People with bad intentions can use the internet for this type of fraudulent behaviour.
Phishing behaviour on GoFundMe includes contacting GoFundMe organisers through their fundraisers and posing as a legitimate donor, organisation or even as GoFundMe or a GoFundMe employee.
How can I avoid phishing?
GoFundMe will never contact our customers through the fundraiser contact form to request contact or identification details or other personal information. GoFundMe will also never ask you to pay in order to be included in GoFundMe's relief initiatives. For more information regarding possible grant qualifications, please follow this link.
- Be extremely careful when opening suspicious emails or links, especially urgent requests or promises of additional donations.
- Don't use the links in an email, instant message or chat to get to any web page if you suspect the message might be fake or the sender untrustworthy.
- Only sign in to GoFundMe accounts via GoFundMe’s official website. Customers should always look for the green lock showing the site is securely encrypted.
What if I’ve come across something suspicious?
If you ever suspect that someone is impersonating GoFundMe or an employee of GoFundMe, please contact us to verify the authenticity of the message.
If you have received any suspicious correspondence regarding your GoFundMe fundraiser, please do not respond; instead, forward it to email@example.com or contact our team directly. We also encourage you to reset your GoFundMe and payment account passwords whenever you receive a suspicious email. If you need assistance with that process, just let us know.
We appreciate you staying vigilant and helping us to keep GoFundMe safe