• Watch out - that Google Calendar meeting invite could be dangerou

    From TechnologyDaily@1337:1/100 to All on Wednesday, December 18, 2024 12:30:05
    Watch out - that Google Calendar meeting invite could be dangerous malware

    Date:
    Wed, 18 Dec 2024 12:10:00 +0000

    Description:
    Google suggests enabling a specific Calendar feature to combat the threat.

    FULL STORY ======================================================================Check Point spots hackers sending fake Google Calendar invites The invites point to a phishing page where they can lose sensitive information Google recommends turning on "Known senders" feature in Calendar

    Cybercriminals have been spotted impersonating Google Calendar, sending
    emails which look to steal victim's private, and business, information.

    A r eport from Check Point Security notes how the criminals would tweak the sender email header to make the message look as if its a Google Calendar invite coming from a known contact. In the body itself, they would add a .ics attachment, a calendar app file, together with a link to either Google Forms, or Google Drawings. On these links, the victims would then be asked to click on another link, which usually looks like a reCAPTCHA, or support, button.

    This link would lead the victim to a website that looks like a cryptocurrency mining, or Bitcoin support site. Successful attack

    "These pages are actually intended to perpetrate financial scams," Check
    Point Research said in its report. "Once users reach said page, they are
    asked to complete a fake authentication process, enter personal information , and eventually provide payment details."

    The campaign seems to have been a success, with Check Point claiming roughly 300 brands have been infected so far, and more than 4,000 phishing emails
    sent over the course of four weeks.

    Commenting on the findings, Google said the best way to defend is to enable known senders in the Calendar. This feature helps, since it will alert the user when they get an invitation from someone who is not in their contacts list, or from someone with whom theyve not interacted before.

    Known senders aside, users should also use common sense, and just be careful when receiving any unsolicited message, particularly around those that come with attachments or links. If they are unsure if the message is legitimate or not, they should reach out to the alleged sender via other means, and confirm the authenticity of the received message. You might also like Sneaky malware abuses CAPTCHA to bypass browser protections Here's a list of the best antivirus These are the best endpoint protection tools right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/watch-out-that-google-calendar-meeting- invite-could-be-dangerous-malware


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)