close
close
Gmail red alert when users are asked to “change Google settings now”

Gmail red alert when users are asked to “change Google settings now”

This emerging threat is one that must be taken seriously.

Google urges users to enable a setting in their accounts
Google urges users to enable a setting in their accounts(Image: Jakub Porzycki/NurPhoto via Getty Images)

Hackers have come up with a new method of attacking users, and those with a Google account are urged to activate the “known senders” feature without delay.

The latest cyber threat, identified by cybersecurity experts from checkpoint, exploits Google Calendar users. The scam begins with seemingly harmless emails arriving in Gmail accounts that contain a link asking recipients to add an event to their calendar.

To increase the chances of success, scammers pose as well-known companies; It is estimated that around 300 brands have been imitated so far. If an individual falls for this scheme, they risk handing over personal information to these nefarious actors, which could lead to financial theft.

Check Point has highlighted the problem stating: “Due to the popularity and efficiency of Google Calendar in everyday tasks, it is not surprising that it has become a target for cybercriminals,” reports the mirror.

They added: “Recently, Check Point cybersecurity researchers have observed cybercriminal manipulation of dedicated Google tools, namely Google Calendar and Google Drawings.”

They also noted that “many of the emails appear legitimate because they appear to come directly from Google Calendar.” This emerging threat must be taken seriously; Check Point revealed that researchers have detected approximately 4,000 such phishing attempts in a span of four weeks.

Scam details:

  • Initial phishing emails may contain a direct link or a calendar (.ics) file that includes a link to Google Forms or Google Drawings.
  • Users are then prompted to click another link, which is often posed as a fake reCAPTCHA or support button.
  • Upon clicking the link, users are redirected to a page that resembles a cryptocurrency mining landing page or bitcoin support page.
  • In reality, these pages are designed to run financial scams. Once users reach these pages, they are asked to go through a fake authentication process, enter personal details, and finally provide payment information.

In addition to staying alert and declining calendar invites, Google recommends turning on the “known senders” feature in Google Calendar. In a statement, Google said: “We recommend users enable the “known senders” setting in Google Calendar.

“This setting helps defend against this type of phishing by alerting the user when they receive an invitation from someone who is not in their contact list and/or with whom they have not interacted from their email address in the past.”

Back To Top