Home/Scam Guides/Latest Scams/Google Calendar invite phishing bypasses spam filters to steal credentials
tech HIGH 12 Jun 2026

Google Calendar invite phishing bypasses spam filters to steal credentials

Impersonating: Google / Gmail

What is this scam?

Google's June 2026 fraud advisory highlights a significant surge in Calendar invite phishing affecting UK users, where attackers send fake Google Calendar invitations containing links to phishing pages. Because the invites are delivered through Google's own Calendar infrastructure, they bypass most spam and phishing filters and appear as genuine event notifications. Victims who click the embedded link are taken to convincing fake sign-in pages designed to steal Google account credentials, payment card details, or personal information.

Example scam message

Google Calendar notification: 'New event: Account Security Review — Action Required. Today 3:00pm. Organiser: Google Security Team (security-noreply@google-account-alerts.xyz). Your account has triggered a security alert and requires immediate verification to avoid suspension. Click here to review: google-security-account-check.xyz/verify' [This is a fake Calendar invite — Google does not schedule security reviews via Calendar invitations or use unofficial domains]

Red flags to look out for

  • The message creates urgency — threatening a fine, missed delivery, or account closure.
  • Links lead to unofficial domains that don't match the real company's website.
  • You weren't expecting this message and can't verify the event it references.
  • It asks you to confirm payment details or personal information via a link.
  • The sender's number or email address doesn't match the company's official contact.

What to do if you receive this

  1. Do not call any numbers or click any links in the message.
  2. Log in to your account directly via the official website or app to check for any real alerts.
  3. Forward the message to 7726 or email report@phishing.gov.uk.
  4. Report it to Action Fraud at actionfraud.police.uk.
Received this message? Forward it to 7726 (free on all UK networks) to report it to your mobile provider. You can also report it to Action Fraud or email the NCSC at report@phishing.gov.uk.

Not sure if your message is a scam?

Check it instantly with our free AI-powered detector.

Check a message now

Related scams

tech Argos account takeover fraud surges 323% as criminals exploit stolen credentials Argos tech Copycat Which? website runs fake debit card comparison article to harvest personal details Which? tech ClickFix fake browser update overlays on compromised UK websites install infostealer malware Google Chrome / Microsoft Edge
← Back to all latest scams

Source: NCSC