As you know, one of the challenges that phishers face in defrauding you out of your username, passwords and – ultimately – cash, is how can they convince you that they are legitimate?
I’m indebted to Clu-blog reader Pete who sent me details of an unusual phishing email he received earlier this week, which goes further than many in attempting to pull the wool over your eyes.
Pete, who uses Google Calendar, received the following in his email inbox.
Unlike many phishing emails it included his real name alongside his email address, and looked identical to a genuine Google Calendar invite.
And that’s because it is a genuine Google Calendar invitation to an event (just like you might receive one to a friend’s barbecue or New Year’s Eve cocktail party). And sure enough clicking on the link in the email takes you to a “real event” in your Google Calendar,…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.
