Calendar Phishing Takes on Google Calendar
Threat Level: 2
Google Calendar is a widely used feature from Google, and many users rely heavily on this to keep their schedules in check. What would you do if your personal schedule was compromised? Are you one of these people who relies on the Google Calendar feature for your day-to-day plans? Unfortunately, Cybercriminals have found a way to slip their way into user’s personal Google Calendars, which is also known to be called Calendar Phishing.
Calendar Phishing comes into effect when users receive a pop-up notification about an event or invite, and the description displays a link that asks users to enter their personal and financial information. This lets Cybercriminals get access to users’ important data, such as banking information and their social security number. Allowing anyone to have the ability to place event invitations in another user’s calendar is invasive and dangerous.
This scam may not seem like a dangerous one at first, mainly because Google Calendars is considered to be such a trusted app. However, it’s important to have some familiarity with what is scheduled on your calendar. If a notification comes up for an event that does not look familiar, then that should raise a red flag. Also, you should never enter in any personal information on anything that seems unreliable or out of the ordinary.
Besides following your instincts, there is a way to officially stop Calendar Phishing by changing your Google Calendar privacy settings:
- Enter into Google Calendar, select the settings Gear icon, and go into Event settings.
- Go for the ‘Automatically add invitations’ option and select ‘No, only show invitations to which I’ve responded.’
- Make sure the ‘Show declined events’ option under the View options section in deselected.