PanicStation.org
UK USA
uk Technology & digital loss calendar spam events • google calendar spam • iphone calendar spam • outlook calendar spam • spam invites with links • calendar events with phone numbers • random appointments on my calendar • unwanted calendar notifications • subscribed calendar i didnt add • meeting invites i never accepted • calendar phishing • spam calendar subscription • suspicious calendar entries • fake virus warning calendar • events added without permission • calendar account compromised • stop automatic calendar invites • remove spam from calendar app

What to do if…
your calendar fills with spam events that include links and phone numbers

Short answer

Don’t click, call, or respond to the events. Remove the source (a subscribed calendar, invite auto-add setting, or connected app), then secure the account that owns the calendar.

Do not do these things

  • Do not click any links in the event description or attachments.
  • Do not call any phone numbers shown in the events.
  • Do not “Accept”, “Maybe”, or “Decline” spam invites just to make them go away (that can signal you’re an active target).
  • Do not install “support”, “cleaner”, or “antivirus” apps suggested by the event.
  • Do not assume deleting visible events fixes it if new ones keep appearing—remove what’s generating them.

What to do now

  1. Stop interacting and take one screenshot.
    Capture a single spam event showing the calendar name/source (useful if workplace IT asks, or you later report it).

  2. Work out what’s adding them (pick the closest match).

    • You see a calendar you don’t recognise in your calendar list → likely a subscribed spam calendar.
    • They look like meeting invites from strangers → your calendar may be auto-adding invitations.
    • It started after installing/connecting something → a connected app/service may have calendar access.

  3. If you’re on iPhone/iPad (Apple Calendar / iCloud): remove the subscription/source.

    • In Calendar, open a spam event and tap Unsubscribe from this Calendar (or delete the subscribed calendar).
    • Also check Settings → Calendar → Accounts → Subscribed Calendars and remove anything you don’t recognise.
    • If you see “Report Junk” for an invite, you can use it (availability can vary by device/account).

  4. If you’re on Google Calendar: reduce what gets added, then remove what’s already there.

    • Use Report as spam if it’s available (this typically applies to events actually sent through Google Calendar; it may not appear for events created by other apps/providers).
    • In Google Calendar settings, set “Add invitations to my calendar” so unknown senders don’t get added automatically (for example, only add when you respond / only if the sender is known).
    • If you have a “Subscribed calendars / Other calendars” entry you don’t recognise, remove it.

  5. If you’re on Outlook / Microsoft 365: turn off “events from email” and remove unknown calendars.

    • In Outlook on the web / Outlook.com calendar settings, turn “Events from email” off (or tighten it) so Outlook doesn’t create events automatically from messages.
    • Remove any unknown additional calendars (subscriptions/shared calendars) that appeared around the time the spam started.
    • If you’re getting lots of meeting-response clutter in Outlook desktop, you can also review the “Automatically process meeting requests and responses…” option (this is about handling responses, not a cure for spam calendars).

  6. Secure the account behind the calendar (this prevents repeat attacks).

    • Change the account password (Google/Apple/Microsoft/email) and turn on two-step verification.
    • Review connected apps / third-party access and revoke anything you don’t recognise (especially anything with calendar permissions).
    • Check for unfamiliar signed-in devices/sessions and sign them out.

  7. If you clicked, called, installed something, paid, or shared details: report and get help.

    • Forward suspicious emails to report@phishing.gov.uk and suspicious texts to 7726 (free).
    • If you lost money or gave personal/financial details, report it to Action Fraud (and tell your bank/card provider promptly).
    • If this is a work account, report to your organisation’s IT/security team.

What can wait

  • You don’t need to delete every spam entry right now if they keep regenerating—focus on removing the subscription/setting/app access that’s generating them.
  • You don’t need to decide whether your device is “infected” in this moment; calendar spam is often invite/subscription abuse rather than malware.
  • You don’t need to confront the sender or “unsubscribe” via any link inside the event.

Important reassurance

This is common and designed to provoke a quick, fearful reaction—especially when it includes phone numbers or “urgent” language. If you don’t engage and you remove the source (subscription/auto-add/app access), the flood usually stops.

Scope note

These are first steps to stop the spam and reduce risk. If your account shows unfamiliar sign-ins or you shared passwords/payment details, you may need additional account recovery and fraud steps.

Important note

This is general information, not legal or professional advice. If you think an account is compromised, prioritise securing it (password + two-step verification + revoke access) and get help from your provider or workplace IT.

Additional Resources
Support us