iEntry 10th Anniversary RSS Newsletter Advertising
WebProNews Alerts:
Visit Twellow.com
SearchSocial MediaTechnologyMarketingEmail MarketingGoogleFacebookTwitterBingYahooAmazonYouTube Tags
Text: Decrease Font Size Increase Font Size | Print Print Article | Share: Delicious Digg StumbleUpon Post to Twitter Post to Facebook
2 commentsTuesday, December 30, 2008

Phishers Using Google Calendar Invites

Don't Fall For it
By Chris Crum

Phishing attempts have been spotted that appear as Google Calendar event invitations. Be wary of any invitations that ask for your password. This should be obvious by now, but these phishers still manage to trick people.

As with most phishing emails, it appears to be somewaht legitimate. They come from email addresses that say customerserviceXXXX@gmail.com (with the XXXX being replaced by a four-digit number), but as John Leyden at The Register notes, the real Google inserts the real name of the recipient in email invitations.

Graham Cluley at Sophos provides the following screenshot of the malicious invitation email:

 Part of the invitation says:

THIS Email is from Gmail Customer Care and we are sending it to every Gmail Email User Accounts Owner for safety. we are having congestions due to the anonymous registration of Gmail accounts so we are shutting down some Gmail accounts and your account was among those to be deleted. We are sending you this email so that you can verify and let us know if you still want to use this account.

Your Google username and password are then requested. "Remember, you really are on Google’s Calendar website," notes Cluley. "You haven’t been taken to a fake site posing as Google, but alarm bells should definitely be ringing in your head at this point."

This is not the first time threats have circulated involving Google Calendar. Back in June Google Blogoscoped reported on a similar incident.

Just remember, Google should never ask for your password. If they (or others for that matter) do, you're most likely dealing with phishing.

  • Delicious
  • Digg
  • StumbleUpon
  • Reddit
  • Furl
  • Facebook
  • Google
  • Yahoo
  • Twitter
News Tags: Google, gmail, Security, Email, Phishing
About the author:
Chris Crum has been a part of the WebProNews team and the iEntry Network of B2B Publications since 2003. Twitter: @CCrum237
By Richard Mongler (WPN reader) - Wed, 12/31/2008 - 02:07

Phishing used to not be so

Phishing used to not be so bad in 1995 when people just phished for AOL accounts and AOL users were stupid then and it wasn't that bad. Nowadays phishing is all about identity theft and the internet has really become serious business.

By LennyVNOLA (WPN reader) - Mon, 03/30/2009 - 18:00

Is there a way to report these to Google?

I know with spoofing and other phishing attempts with eBay and PayPal, there is an email address like spoof@eBay.com to forward these things. Anything like that for Google... or just ignore them like all the other spoofing/phishing attempts for bank info.

Publish A Comment

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
2 + 2 =
Solve this simple math problem and enter the result. E.g. for 1+3, enter 4.
SEARCH
Popular WPN Business Resources
WebProNews Video Blog View All Videos












Subscribe to WebProNews


Send me relevant info


WebProNews Videos | Advertise | About Us | Newsletter | Archive | News Feeds | Terms & Conditions | Login

WebProNews is an iEntry Network ® publication - © 1998-2009 All Rights Reserved