Getting hacked is never planned, but it seems that malware is infiltrating people’s calendars.
New reports are warning Google users that malicious actors are attempting to infect Google Calendars, Slides and Docs with “info-stealing” software to gain access to emails, chat logs, browser data, login credentials and more.
According to Wired, scams involving Google Calendar target users with fake meeting invites that contain phishing links disguised as being legitimate, whether they are placed in the event description or just within the initial invite email.
“A standard Google Calendar invite comes with links to both the event itself and the list of guests — the event is also included as an .ics file attachment to open in a calendar app,” Wired explained.
“Events themselves, meanwhile, can come with links embedded in the description and files from Google Drive attached. All of these elements can be taken advantage of in some way by bad actors.”
Check Point identified approximately 300 brands that had been impacted by the scams, according to a report in December, with thousands of phishing emails spotted by cybersecurity researchers.
Meanwhile, Google Docs and Slides have also been hijacked by bad actors to quietly steal sensitive information.
Tom’s Guide reported that a new type of malware known as “ACRStealer” is infecting tools like Google Docs to gain access to users’ computer systems.
“Because one of the main ways that infostealers are spread is through illegal software, make sure that you are only downloading software through legitimate websites and sources,” Tom’s Guide advised, in addition to keeping systems up to date and using multi-factor authentication to keep accounts secure.
“Be cautious if anyone sends you a link to download software from any unknown or unexpected sources. Know the signs of phishing emails and attacks and how to avoid them, and never click on unexpected links or attachments.”
Wired also recommends only responding to event invites and clicking invite links that users are expecting or know to be genuine. The outlet also warned that if “a link leads you anywhere other than Google Calendar” to stop immediately.
“Even if you think you are on Google Calendar, double-check the browser address bar to make sure,” the publication said, adding to always verify the sender’s email address.
