Getting hacked is rarely planned, but it appears that evidently malware is infiltrating people’s calendars.
Recent reports are warning Google users that malicious actors are trying to contaminate Google Calendars, Slides and Docs with “info-stealing” software to realize access to emails, chat logs, browser data, login credentials and more.
In accordance with Wired, scams involving Google Calendar goal users with fake meeting invites that contain phishing links disguised as being legitimate, whether or not they are placed within the event description or simply throughout the initial invite email.
“A regular Google Calendar invite comes with links to each the event itself and the list of guests — the event can be included as an .ics file attachment to open in a calendar app,” Wired explained.
“Events themselves, meanwhile, can include links embedded in the outline and files from Google Drive attached. All of those elements could be taken advantage of ultimately by bad actors.”
Check Point identified roughly 300 brands that had been impacted by the scams, in accordance with a report in December, with 1000’s of phishing emails spotted by cybersecurity researchers.
Meanwhile, Google Docs and Slides have also been hijacked by bad actors to quietly steal sensitive information.
Tom’s Guide reported that a latest kind of malware generally known as “ACRStealer” is infecting tools like Google Docs to realize access to users’ computer systems.
“Because one in all the important ways in which infostealers are spread is thru illegal software, be certain that that you simply are only downloading software through legitimate web sites and sources,” Tom’s Guide advised, along with keeping systems up thus far and using multi-factor authentication to maintain accounts secure.
“Be cautious if anyone sends you a link to download software from any unknown or unexpected sources. Know the signs of phishing emails and attacks and the right way to avoid them, and never click on unexpected links or attachments.”
Wired also recommends only responding to event invites and clicking invite links that users expect or know to be real. The outlet also warned that if “a link leads you anywhere aside from Google Calendar” to stop immediately.
“Even when you think you might be on Google Calendar, double-check the browser address bar to be certain that,” the publication said, adding to at all times confirm the sender’s email address.
Getting hacked is rarely planned, but it appears that evidently malware is infiltrating people’s calendars.
Recent reports are warning Google users that malicious actors are trying to contaminate Google Calendars, Slides and Docs with “info-stealing” software to realize access to emails, chat logs, browser data, login credentials and more.
In accordance with Wired, scams involving Google Calendar goal users with fake meeting invites that contain phishing links disguised as being legitimate, whether or not they are placed within the event description or simply throughout the initial invite email.
“A regular Google Calendar invite comes with links to each the event itself and the list of guests — the event can be included as an .ics file attachment to open in a calendar app,” Wired explained.
“Events themselves, meanwhile, can include links embedded in the outline and files from Google Drive attached. All of those elements could be taken advantage of ultimately by bad actors.”
Check Point identified roughly 300 brands that had been impacted by the scams, in accordance with a report in December, with 1000’s of phishing emails spotted by cybersecurity researchers.
Meanwhile, Google Docs and Slides have also been hijacked by bad actors to quietly steal sensitive information.
Tom’s Guide reported that a latest kind of malware generally known as “ACRStealer” is infecting tools like Google Docs to realize access to users’ computer systems.
“Because one in all the important ways in which infostealers are spread is thru illegal software, be certain that that you simply are only downloading software through legitimate web sites and sources,” Tom’s Guide advised, along with keeping systems up thus far and using multi-factor authentication to maintain accounts secure.
“Be cautious if anyone sends you a link to download software from any unknown or unexpected sources. Know the signs of phishing emails and attacks and the right way to avoid them, and never click on unexpected links or attachments.”
Wired also recommends only responding to event invites and clicking invite links that users expect or know to be real. The outlet also warned that if “a link leads you anywhere aside from Google Calendar” to stop immediately.
“Even when you think you might be on Google Calendar, double-check the browser address bar to be certain that,” the publication said, adding to at all times confirm the sender’s email address.
