This information would then be sent straight to the hacker, and could be used to steal money or the user’s identity. The site asked for a “fixed” payment, with the user required to enter their credit card details and personal information. The link directed the user to a website featuring a questionnaire with prize money on offer. The hack identified by Kaspersky involved malicious actors using this feature to send a link to a phishing website in the calendar notification. “Because Google Calendar is designed to let anyone at all invite you to a meeting, both Calendar and Gmail are totally fine with any John Doe scheduling a meeting with you,” the Kaspersky report said. The trick involves using a feature in Google Calendar allowing anyone to create a calendar event, invite a random person, and have an automatic notification sent to them about it. Hackers are exploiting a feature on Google Calendar that affects all 1.5 billion users around the world, security researchers have found.Ĭybersecurity provider and researcher Kaspersky Lab published a report detailing its findings that malicious actors are utilising a Google feature in an attempt to steal their financial details.
0 Comments
Leave a Reply. |