Here's the original post:
http://www.symantec.com/enterprise/security_response/weblog/2007/07/scammers_make_friends_with_cha.html
And here's a Washington Post story spawned from it:
http://blog.washingtonpost.com/securityfix/2007/07/odd_charity_donations_could_pr.html?nav=rss_blog
I discovered this while combing through logs, and a co-worker wrote a really awesome blog. Totally worth reading!
Wow, the Red Cross was actually contacted!
http://www.newsday.com/business/ny-bzcard0706,0,2737311.story?coll=ny-business-leadheadlines
... and somebody (not me!) submitted it to Slashdot! Too cool!!
http://it.slashdot.org/article.pl?sid=07/07/07/1929237