A recent analysis reveals that attackers are exploiting iCloud Calendar invites, sending event invitations with phishing content from legitimate Apple servers, to falsely claim recipients have new PayPal charges and prompt them to call a number for “support.” These invites are routed through Microsoft 365 forwarding systems to avoid spoofing detection, making the emails appear credible to many mobile users. Because mobile devices often give less visibility into email infrastructure cues, this method increases the risk that users will fall for calendar-based phishing and install malware under the guise of help.
Read the full report here.
