Terence Eden@Edent@mastodon.social: Nasty little phishing attempt unwittingly facilita…

Home | Notifications | New Note | Local | Federated | Search | Logout

Note Detail

Terence Eden@Edent@mastodon.social (2026-06-10 04:46:46)
Nasty little phishing attempt unwittingly facilitated by Cal.com

First was this meeting request. Someone filled in my calendar request form.
Looks like a plausible invite - someone wanting to discuss something and a link to a document to review.

This is quite normal. People often want to hire me and will send along a project brief.  What happens if I click on the link?

1/4
---Attachments---
image: https://files.mastodon.social/media_attachments/files/116/721/857/616/233/502/original/580920c88635b75b.png


---Replies---

Terence Eden@Edent@mastodon.social (2026-06-10 04:49:56)
"Huh! I must be signed out of my Google account. Better log in."

That's what the scammer wants you to think.

This is a pretty good spoof page! The UI looks about right and there are no obvious typos.

Even the domain isn't egregious. It isn't a .xyz domain or some super-weird domain name. True, it isn't Google - but it also isn't a random jumble of letters.

Let's type in our email address, just for fun!

2/4
---Attachments---
image: https://files.mastodon.social/media_attachments/files/116/721/872/338/339/311/original/ea5268dd5e267f32.png