Google has said it is “working diligently” to fix a major flaw that allows hackers to hijack a person’s Google Calendar through unwanted email invites.
The flaw allows cybercriminals to take advantage of a default setting that automatically adds invitations to a person’s Calendar when they are sent via email.
Unsolicited invites then appear as a notification through the Google Calendar app, which if clicked on can lead users to an official-looking page requesting personal and financial details.
“We’re aware of the spam occurring in Calendar and are working diligently to resolve this issue,” Google wrote in an update to its Calendar Help page.
“We’ll post updates to this thread as they become available… Thank you for your patience.”
By Anthony Cuthbertson
To read the full article, please click here.
