By John Gruber
WorkOS: APIs to ship SSO, SCIM, FGA, and User Management in minutes. Check out their launch week.
David Sparks:
Most of the calendar spam I’ve seen has originated from China. Somebody has a big list of email addresses and sends out calendar invites with spammy links embedded. By default, the Mac looks at these invites and gives them to you via the calendar app along with a notification.
Historically, I’ve really liked this feature. My family uses multiple calendars and we routinely send each other invites. If I need to drive my daughter to a particular event, she sets the event in her calendar and sends me an invite. (We also have a shared family calendar but that includes everyone and in this case it would just be me and my daughter.)
This is what makes me so pissed about calendar spam. It’s taking something I use often and corrupting it. My guess is this is only going to get worse and I really hope Apple intervenes. In the meantime, there are a few steps you can take.
I started getting these last week. Same as a lot of you, I’ll bet: spam for Ray-Ban sunglasses and Ugg boots. Knock on wood, but I haven’t gotten one in about three days as I write this, so maybe Apple figured out a way to stop this? If you’re still getting them, let me know.
Update: A large number of readers report being hit by this spam yesterday and today, so I must just be lucky that it has (temporarily?) subsided for me. The most interesting thing about this is that it’s a way to send completely unauthenticated spam, and it has been just sitting around unexploited until now. This feature has been around for years, but the spammers seemingly didn’t find it until very recently.
Update 2: Apple is “actively working to address this issue by identifying and blocking suspicious senders and spam in the invites being sent.”
★ Monday, 28 November 2016